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Field of Invention 

This invention pertains generally to systems and methods for providing security for 
communication of etectronic messages* interactive sessions, software downloads, software upgrades, 
6 and other content from a source to a receiving device as well as signals used for such communications; 
and more particularly to systems, methods, signals, device architectures, data fomfiats, and computer 
program structures for providing authentication, integrity, confidentiality, non-repudiation, replay 
protection, and other security properties while minimizing the networl< bandwidth, computational 
resources, and manual user interactions required to install, enable, deploy and utilize these security 
10 properties. 

Baclcground 

Numerous security protocols has been proposed in the academic literature and many have 
been deployed in commercial products. Currently the most popular protocol for secure sessions between 

15 a client machine and a server machine is SSL/TLS, which provides an interactive two-way connection 
that has at least one party authenticated using a digital certificate issued by a mutually trusted third party. 
Secure browser-based electronic commerce is almost always performed with the help of the SSL 
protocol. The most popular secure protocols for unidirectional messaging (e.g., e-mail) are S/MIME and 
PGP, which provide encryption and/or digital signatures based on digital certificates. The most popular 

20 protocols for secure downloads and upgrades are Authenticode and Signed JAR files, which also use 
digital certificates. The most popular systems for requesting and issuing digital certificates are PKCS- 
7&1 0 and the S/MIME CMS protocol. 

Each of these protocols requires a large amount of software code and data memory to 
implement and the steps needed to enroll or register to use these systems are time consuming and in 
25 other ways annoying to users. A system that needed to implement all of these protocols would be very 
difficult to implement on a device with limited memory and computing resources, and very annoying to 
the users. 

These protocols do not provide solutions to the problem of securely authorizing a specific user 
the right to access a specific resource, such as a web page or software upgrade. In a manner that cannot 
30 be spoofed by a third party. 

The need for appropriate security protocols, procedures, and methods are particularty 
problematic for electronic messaging in general, and for electronic mail or email in particular. 

Electronic mail, commonly referred to as e-mail, is broadly acknowledged as the "killer" 
application of the Internet and is a major contributor to its growth, but in a number of ways e-mail is stuck 

35 In the past Most e-mail messages, particularly fn a business or other commercial environment but also 
frequently in personal or non-commercial environments as well, have a predetermined intent, goal, or 
other purpose directed at achieving some particular result or response from the e-mail receiver. Once a 
message is composed and published, it is generally expected that the intent and quality of presentation 
of the message wilt be presented. In the past, when e-mail was exclusively or primarily symbol or text 

40 based, maintaining the goal or intent of the message was relatively strait fonvard. If the message was 
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well authored so as to present the desired intent and the message was received, it was likely that the 
receiver would having sufficient intelligence, appreciate the intent of the message. As e-mail has 
evolved, it may frequently include non-symbolic or non-textual information, for example, digital images or 
pictures, graphics, digital audio, video, and the like. Usually, these non-symbolic content enhancements 
5 are provided as attachments to the basic message. Frequently, the intent of the message or the reason 
for sending the message will be partially or even entirely lost unless the non-symbolic portion, such as a 
video attachment, is also viewed by the receiver. >A/hether the content enhancements are ever seen or 
heard by the e-mail recipient may be functions of the recipients hardware, software, programmed 
preferences, sophistication, as well as other tangible and intangible factors. The e-mail author, sender, 
10 or fonvarder may typically not know these tangible or intangible factors for any particular recipient. 

For these and other xeasons .lhat .will be described in greater detail herein, conventional 
procedures for generating and distributing e-mail unfortunately do not typically presen/e either the intent 
of the message or the quality of the presentation when sending messages to a broad range of e-mail 
client devices (the types and sophistication of which are nearly unlimited) unless concerted efforts are 
15 made to maintain the intent and quality. As a result, conventional approaches used to generate and 
distribute e-mail severely restrict the Impact that e-mail could have on recipients and mainstream e- 
commerce applications. 

One problem, for example, with conventional approaches used to generate and distribute e- 
mail is related to the fact that content in e-mail messages is typically not adjusted to the hardware 

20 capabilities of an e-mail client that will actually receive the content If the content of the e-mail is not 
generated to be compatible with the hardware capabilities of a particular e-mail client, the desired intent 
of the message may be completely lost Such hardware and/or software capabilities include, for 
example, audio capabilities, motion video capabilities, microprocessor type, the amount of memory that js 
available to store and/or execute the e-mail content, display monitor screen size, and display monitor 

25 characteristics, which In tum depend on both the logical circuitry (provided by a video adapter) of the 
display monitor and display monitor screen size, and the like. 

Consider an example where an e-mail publisher sends an e-mail advertisement message that 
consists of a color motion video oif a diamond ring. If the message Is received by an e-mail client that 
does not have required hardware for computing graphical transfonmations, for example, a graphics 
30 accelerator card, the recipient of the message will not be able to view the motion video portion of the 
message, and a necessary component of the message will have been lost, the motion video. 

Clearly, some client device types will be able to receive, format, and display or present each 
and every one of the infomiation items included in an e-mail message. Equally clearty, other client 
device types would be unable to present any but the minimum set of infonmation items, and likely none of 

35 the infomnatlon Items unless only the minimum compatible information items was actually communicated. 
For example, a cellular telephone having only one or a few lines of monochrome display, a low-end 
Personal Data Assistant (PDA),. or the like information appliance having limited display and/or limited 
multimedia presentation capabilities would only be able to display small amounts of text or limited 
monochrome graphics. Therefore, while it would be desirable to generate and distribute optimized e-mail 

40 messages that Include content that is compatible with all e-mail enabled dient hardware configurations, 
this has not been achieved in practice. 

Heretofore, e-mail is not typically authored to take into account the hardware, software, and 
user preference attributes of the e-mail recipient. Only where a user has subscribed to some service 
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where the content is authored specifically for a particular intended recipient or group of redpients may 
the content sometimes be tailored to match these attributes. For electronic messages sent to a large 
number of intended recipients^ such as for a mass consumer advertising campaign, where no knowledge 
of the users* hardware, software, or preference attributes is available, conventional systems and methods 
5 do not facilitate providing an optimized e-mail communication that maintains the intent of the message. 
Therefore, it has been necessary to rely on a least common denominator approach for such e-mailings 
where the Impact of the communication must frequently be sacrificed so that the message may be 
received and viewed by a maximum numt)er of the intended recipients. 



,10 least common denominator approach that incorporated only that content that is compatible with the 
hardware of all e-mail clients, for example, textual content, the level of quality .that may have been 
desired to show the advertisers products in a positive light would also be lost with respect to an e-mail 
dienl that does have the necessary hardware capability to view the motion video. All redpients would 
merely receive a text message saying for example, 'Three Carat Diamond Ring, $1595.00 at Joe's 

15 Jewelry Store", rather than at least some potential buyers viewing a multi-media "presentation on the ring 
and other attributes of Joe*s Jewelry Store. Therefore, it Is also desirable to substantially optimize e-mail 
to take significant advantage of those respective capabilities and attributes that are known or may be 
knowable either before sending the message or after the message is received. Related to these Ideals is 
the fact that e-mail messages often include extra information that while compatible with the hardware 

20 capabilities of an e-mail client, cannot or will not be used by the e-mail dient. 

For example, there Is no need to include color image data in a message that is being sent to a 
device that only has a monochrome monitor. A monochrome monitor cannot display a color Image no 
matter how fancy a video card the device may have. To make matters even worse, there are a number 
of undesirable side effects of sending such extra infonnation. For example, the extra information may 
25 take up a significant amount of limited memory resources of the receiving device, and/or. depending on 
the communication channel connection characteristic^ of the client device, may slow down the speed at 
which the message is received by the device. In addition. In spite of the fact that a user's device may be 
capable of receiving a rich-media message, the user may simply prefer not to receive advertisements or 
other e-mail having multi-media or rich media content. 

30 Another problem with conventional techniques for generating and exchanging e-mail, is that e- 

mail messages are not typically generated such that an e-mail client's network connection characteristics 
are considened. As a result, the presentation of the e-mail message may be compromised. Such 
network connection characteristics indude, for example, nominal speed or bandwidth of networic 
connections, latencies, throughput, and other contemporaneous communication link/channel attributes. 

35 This is a problem because, even though a client device may be capable of receiving a very rich message, 
if the then prevailing communication channel is only supporting low speed or low bandwidth 
communication, the conventional systems and methods do not provide procedure to reduce the richness 
of the message while maintaining the goal or intent of the message. In fact, conventional streaming 
techniques for rich media tend to do just the opposite, that is to permit any reduction in quality so that the 

40 content is received within a real-time or near-reaMirne time constraint. In some instances, the content 
may be so degraded as not to offer any useful information at all. 

Another problem with conventional techniques for generating and exchanging e-mail, is that e- 
mail messages are typically generated in a manner that is insensitive to individual user preferences. 



If the publisher in this example above for the diamond ring generated the e-mail content with a 
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Such preferences include, for example, prefen'ed language, security level, physical disability 
requirements, content layout, demographic information, and the like. For example, a user may be a 
predominantly Spanish-speaking individua! who prefers to receive information, for example, text and 
audio, in the Spanish-language where possible, rather than in for example the English language. If a 
5 message is generated in a language that is not understood by the recipient, the recipient will not be able 
to understand the message without additional assistance, for example, with assistance by a language 
interpreter. Even if the message might be understood by the recipient, it may fail to make the desired 
impression on the recipient Additionally, If the message does not comply with the recipient's physical 
disabilities, for example, blindness or deafness, the recipient also may not be able to fully understand the 
10 message without additional assistance, for example, having the message translated Into a Braille or an 
audio fomiat As illustrated in both of these example, if the e-mail is generated in a manner that is 
insensitive to individual user preferences, the full impact and intent of the message is generally lost. 

To complicate matters, an e-mail client device that has received an e-mail may forward the e- 
mail to additional e-mail enabled devices, and they in turn may fonward the message to other e-mail 

15 clients, and the like. Each of these additional e-mail clients may have similar, narrower, or broader 
hardware capabilities, network connection characteristics, and corresponding user preferences as 
compared to the capabilities, characteristics and preferences of a fonwarding e-mail client. Desirably, e- 
mail messages are generated in a manner such that the respective content of the e-mail is optimized and 
compatible with the respective hardware capabilities, connection characteristics, and user preferences 

20 associated with all e-mail clients, regardless of whether the e-mail client received the message directly 
from the publisher or from an intermediary by way of fonwarded e-mail. 

Yet another problem with conventional e-mail is that it provides poor navigational and 
procedural control for e-commerce applications, and conventional e-mail has little or no capability for rich 
graphics, audio, video, or interactive controls. As a result, conventional e-mail severely restricts the ease 

25 of use of e-mail and the impact that e-mail could have on recipients and mainstream e-commerce 
applications. Such applications include, for example, business-to-consumer (B2C) e-commerce and 
business-to-buslness e-commerce (B2B). This problem becomes more apparent every day, because 
increasingly, communications between suppliers and customers is being accomplished via e-mail. 
Customers are inquiring about products and orders via e-mail, and suppliers are alerting existing and 

30 potential customers about new products and services. 

To illustrate this problem, refer to Table 1, where there is illustrated a targeted promotion in the 
form of an e-coupon from an on-line business or retailer (sometimes referred to as an "etailer") to a 
consumer (this is an example of a business to consumer or B2C transaction) that offers the consumer a 
gift certificate. 

35 

To take advantage of the retailer's targeted promotion, a recipient must perform an number of 
time consuming navigational and procedural steps. For example, at step 1, the recipient must point her 
browser to the on-line retailer's web site on the worid wide web (www). At step 2, the recipient must 
select the items of interest and be sure not to use a particular payment method (1-click ), but instead 
40 place the selected items in the shopping cart At step 3, the recipient must select a "checkout" button. 
Finally, at step 4, the recipient must wait until prompted by the retailer's web site to type in the numbers 
of the provided gift certificate claim code to generate an order form to complete the transaction. These 
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procedures are time consuming and require complicated navigation for the recipient of a targeted 
promotion to generate an order in response to the promotion. 



TABLE 1 

EXAIVJPLE OF AN E-COUPON FROIW AN ON-LINE RETAILER 

To: danj@pacbell.net 
Amount: U.S. $10.00 
From: on-line retailer.com 

Claim x:ode.(YOU!LL NEED THIS WHEN ORDERING!): 
2AUH_RX8A7G_RE73YL 
Expiration date: Decembers. 1999 
Using your gift certificate is easy. Just follow these steps: 

1. Visit our Toys & Video Games store at http:/AAAww.on-Iine retailer.com/toys. 

2. Select the items you want. Please use our Shopping Cart rather 
than our I^CIicksw ordering to pay for your order with a gift certificate. 

3. Hit the 'Proceed to Checkout* button. 

To make matters even worse, the recipient of a targeted promotion must be connected to the 
intemet to respond to the promotion. Often an e-mail recipient will download e-mail from an internet 
20 connected device to a non-internet connected device for example, a handheld PDA, for later perusal at a 
location that may not have convenient internet access. However, it can be appreciated from the 
foregoing discussion, that to perform the procedural and navigational steps required for the recipient to 
respond to the promotion, the recipient must be connected to the intemet because there are no 
procedures for the recipient to navigate the steps outlined in the promotion without connecting to the 
25 retailer's web site. 

Desirably a targeted promotion would include interactive controls and content that is generated 
such that it is optimized and compatible with the respective hardware capabilities, connection 
characteristics, and user preferences associated with all e-mail clients. Such Interactive controls would 
allow a redpient of a targeted promotion to respond to it without needing to undertake time consuming 
30 navigational and procedural steps either to generate an order or to obtain additional information that 
relates to the promotion. Additionally, it is desirable to have a procedure which wilt allow the recipient to 
respond to the promotion without having to respond from a device connected to the Internet. 

There are a number of problems that must be solved to overcome the above discussed 
limitations of traditional procedures used to generate and distribute e-mail. For example, it is rare that an 

35 author knows the respective hardware capabilities, connection characteristics, and user preferences of 
each e-mail enabled device to which a message Is targeted. Even if the author did know of such 
capabilities, characteristics, and preferences, the author would typically be required to perform a number 
of laborious, time consuming procedures to generate such messages. For example, for each respective 
device, the author would typically need to manually compose each respective message based on each 

40 respective e-mail client's respective, capabilities, characteristics, and associated preferences. But, as 
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discussed above, these labors will be moot if the targeted message is forwarded to a device that has 
different such capabilities, characteristics, and preferences than the device for which the original e-mail 
message was composed. It is also advantageous that the message be composed automatically without 
human intervention, and that the message ultimately received by a recipient substantially match 

5 hardware, software, and user preference attributes of each individual client device and user. 

Additionally, if an author desires to compose a message, for example, with a similar intent but 
that is targeted to a different audience than a prior targeted message, the author would typically be 
required to generate individual messages that not only confonn to the different audience, but that also 
conform to the such capabilities, characteristics and preferences discussed above. For example, it may 

10 frequently be desirable to alterthe content of an e-mail message to take advantage of a particular cultural 
context or to avoid .particular language .or .stereotypes that .may -be detrimental Ao the intent of the 
message. For example, if It is known that the receiver identifies themselves with the Armenian-American 
community it may be advantageous to firame.an advertisement so that it is well received by that member 
of the Armenian-American community and uses for example video images showing Armenian-American's 

15 enjoying the product and Armenian music as the background. By the same token, when marketing the 
same products to an individual identifying himself or herself with the Irish-American community, it may be 
advantageous to show Irish-Americans enjoying the product and traditional Irish music In the 
background. 

In light of the above, what is needed is a procedure for generating and exchanging optimized e- 
20 mail that conveys the intent of the e-mail publisher across a wide variety of audiences within the 
boundaries of the hardware capabilities, and connection characteristics of all e-mail enabled devices. 
Ideally, such optimized e-mail will be generated in a manner that is sensitive to any user preferences of 
an end user for whom the message is directed. Desirably, a receiver of an e-mail message would be 
able to access and respond to the message with interactive graphical user interface controls in a manner 
25 that does not depend on whether the e-mail client is on-line or off-line. It is also desirable that the e-mail 
not only be optimized for the user's normal hardware, software, communications channel and other 
attributes if such are known to the e-mail author, but most desirably to the actual attributes at the time the 
e-mail message is received by the recipient. 

Also needed are system architectures and program and data structures coupled or used 
30 together with appropriate security protocols, procedures, methods, and that provide the desired 
functionality in a secure manner and desirably do so in an architecture-neutral operating -system neutral, 
and transport layer neutral environment. 



Summary 

35 The Invention provides numerous innovations and enhancements over conventional systems 

and methods, and where implemented in whole or in part as a computer program (for example, as 
software, finnware. a combination of software, firmware and/or hardware) also provides computer 
program and computer program product as well as various articles of manufacture. 

In one aspect, the invention provides a system, device, method, computer program and 
40 computer program product for a hardware architecture neutral and operating system neutral and network 
transport neutral method for authorizing a specific user the right to access a specific resource such as an 
e-mail message or a promotional coupon. 
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In another aspect, the invention provides a system, device, method, computer program and 
computer program product for a hardware architecture neutral and operating system neutral and network 
transport neutral method for representing a digital certificate that enables at least encryption and digital 
signatures using substantially less storage and bandwidth than conventional digital certificates. 

5 In another aspect, the invention provides a system, device, method, computer program and 

computer program product for a hardware architecture neutral and operating system neutral and network 
transport neutral method for implementing two or more security protocols such as 1) secure interactive 
sessions, 2) secure unidirectional messaging, 3) secure software downloading, 4) secure software 
upgrading, and 5) secure issuing of digital certificates, using a common set of data fomiats, algorithms, 

10 subroutines, and methods. 

-In another aspect, the invention provides a system, device, method, computer program and . 
computer program product for a hardware architecture neutral and operating system neutral and network 
transport neutral method for secure interactive sessions using less software code and network bandwidth 
than conventional systems. 

15 In another aspect, the invention provides a system, device, method, computer program and 

computer program product for a hardware architecture neutral and operating system neutral and network 
transport neutral method for secure unidirectional messaging using less software code and network 
bandwidth than conventional systems. . 

In another aspect, the invention provides a system, device, method, computer program and 
20 computer program product for a hardware architecture neutral and operating system neutral and network 
transport neutral method for secure certificate issuing using less software code and network bandwidth 
than conventional systems. 

In another aspect, the invention provides a system, device, method, computer program and 
computer program product for a hardware architecture neutral and operating system neutral and network 
25 transport neutral method for secure response session using less software code and network bandwidth 
than conventional systems. 

In yet another aspect, the Invention provides a system, device, method, computer program 
and computer program product for a hardware architecture neutral and operating system neutral and 
network transport neutral method for secure unidirectional response message using less software code 
30 and network bandwidth than conventional systems. 

The invention provides numerous innovations and enhancements over conventional systems 
and methods, and where implemented in whole or in part as a computer program (for example, as 
software, fimiware, a combination or software, finnware, and/or hardware) also provides computer 
program and computer program product as well as various articles of manufacture. Furthermore each of 
35 the innovations provides and/or supports one or more business models and methods of during business 
particulariy when the innovations contribute to a generated revenue stream (either directly or indirectly) 
and fosters relationships between consumers and/or businesses. 

For example, the invention provides a system, device, method, computer program, and 
computer program product for a hardware architecture neutral computer program language and structure 
40 and method for execution. 
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The invention further provides a system, device, method, computer program, and computer 
program product for autonomous generation of customized file having procedural and data elements from 
non-procedural flat-file descriptors. 

The invention further provides a system, device, method, computer program, and computer 
5 program product for intelligently scaling message procedural/data sets to adapt the procedural/data sets 
to receiver attributes and maintain message intent 

The invention further provides a system, device, method, computer program, and computer 
program product for an intent presen/Ing message adaptation and conversion system and method for 
communicating with sensory and/or physically challenged persons. 
10 The invention further provides a system, device, method, computer program, and computer 

program product for searching and selecting data and control elements in message procedural/data sets 
for automatic and complete portrayal of message to maintain message intent. 

The invention further provides a system, device, method, computer program, and computer 
program product for adapting content for sensory and physically challenged persons using embedded 
1 5 semantic elements in a procedurally based message file. 

The invention further provides a system, device, method, computer program, and computer 
program product for forward and backward content based version control for automated autonomous 
playback on client devices having diverse hardware and software. 

The Invention further provides a system, device, method, computer program, and computer 
20 program product for reducing unauthorized access by procedural messages executing in a computer 
system to computer system or memory or programs or data stored therein. 

The invention further provides a system, device, method, computer program, and computer 
program product for self-directed loading of an input buffer with procedural messages from a stream of 
sub-files containing sets of logical files. 
25 The invention further provides a system, device, method, computer program, and computer 

program product for device-neutral procedurally-based content display layout and content playback. 

The invention further provides a system, device, method, computer program, and computer 
program product for thin procedural multi-media player run-time engine having application program level 
cooperative multi-threading and constrained resource retry with anti-stall features. 

30 The invention further provides a system, device, method, computer program, and computer 

program product for streaming multimedia-rich interactive experiences over a communications channel. 

The invention further provides a system, device, method, computer program, and computer 
program product for cooperative application-level multi-thread execution including instruction retry feature 
upon identifying constrained system resource. 

35 These and other aspects of the system, device, method, computer program, and computer 

program product are provided by the invention and each may be utilized separately or in various 
combinations to provide a broad range of structures, functions, and capabilities. 

In still another aspect, the invention provides various signals, such as signals in the fonm of 
digital bit sequences, for providing such communication either with or without security features. 
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Brief Description of Drawings 

FIG. 1 Is a diagrammatic illustration showing a block diagram that illustrates aspects of an 
exemplary system, according to one embodiment of the present invention; 

FIG. 2 is a diagrammatic Illustration showing block diagram that illustrates aspects of an 
5 exemplary sender/publisher of content, according to one embodiment of the present invention; 

FIG. 3 is diagrammatic illustration showing an enumerated list that illustrates aspects of an 
exemplary Extensible Markup Language QiML) document from a sender/publisher, according to one 
embodiment of the present invention; 

FIG. 4 is a diagrammatic illustration showing block diagram that illustrates aspects of an 
1 0 exemplary sending story server, according to one embodiment of the present invention; 

FIG. 5 is a diagrammatic illustration showing block diagram that illustrates aspects of an 
exemplary story enabled client, according to one embodiment of the present invention; 

FIG, 6 is a diagrammatic illustration showing block diagram that illustrates aspects of an 
exemplary procedure, according to one embodiment of the present invention; 

15 FIG. 7 is a diagrammatic illustration showing block diagram that illustrates aspects of an 

exemplary procedure, according to one embodiment of the present invention; 

FIG. 8 is a diagrammatic illustration showing block diagram that illustrates aspects of an 
exemplary Story Compiler implemented on a computer, according to one embodiment of the present 
invention; 

20 FIG. 9 is a diagrammatic Illustration showing block diagram that Illustrates aspects of an 

exemplary procedural layout of rectangles on a virtual display screen, according to one embodiment of 
the invention. . 

FIG. 10 shows an exemplary embodiment of a Message ID according to the invention; and, 

FIG. 11 Is a diagrammatic illustration titustrating steps for aeating an embodiment of a 
25 message tag from a message ID. 



Detailed Description of Embodiments of the Invention 

Aspects of the inventive system, system architecture, and method are now described so that 
the security features which may advantageously be used with such system, system architecture, and 

30 method will be more readily understood. It will be apparent to those workers having ordinary skill in the 
art in conjunction with the description provided herein, that the inventive security apparatus, data 
stmctures. instmctions. codes, methods and other aspects may be utilized with StoryMail^ type features 
as well as with other non-StoryMail systems and methods. Exemplary system architectures and methods 
are therefore described first, followed by a more detailed description of other security features of the 

35 invention. Other aspects of the invention are described in the related applications which are hereby 
incorporated by reference. While the term storymail or StoryMail may be used to conveniently describe 
certain types of structures, files, or operations, it will be appreciated that structures, files, or operations 
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that do not formally or exactly satisfy the Storymail criteria but that provide StorymalHike or would 
otherwise operate with the Inventive element may also or altematively be used. 

EXEMPLARY SYSTEM ARCHITECTURE AND ME THOD EMBODIMENTS 
5 We first provide a top-level description of some of the key technology components of the 

invention called a story or other content and systems and methods for authoring, communicating, 
securing, and rendering such content, along with a description of some of the advantages provided by 
stories. This description is then followed by several sections that describe the manner in which certain 
functional and procedural capabilities and/or advantages are achieved in the inventive system. Section 
1 0 headers when provided are provided merely as a convenience to the reader as a guide to portions of the 
description addressing certain aspects of the invention; however. It will be appreciated that various 
aspects of the invention are described throughout the description and certain aspects are best described 
in several portions of the description rather than in a single portion to that relationships may be better 
understood. Therefore, the description should be considered as a whole with respect to the 
15 characteristics or attributes of any structure, system, device, method, procedure, computer program, or 
other aspect of the invention. 

For purposes of an initial working definition and in somewhat simplified terms, a story as the 
term is used in this description generally refers to a single, author once, play everywhere file or 
data/command structure that is interactive either on-line or off-line and that can be used to distribute rich 
20 multimedia messages or other rich-media content to all e-mail enabled clients. (More complete as well 
as altemative definitions of "stories" are described elsewhere in the detailed description.) Next, aspects 
of an exemplary system to generate, transfer and play stories, according to one embodiment of the 
present invention, are described. Once this top level description has been provided, the detailed 
operation of the respective business or operating models and methods of the invention will be described 
25 ' and more readily understood. 

The term e-mail is used here because it represents a form of electronic communication that Is 
known in the art. but it will be appreciated that the inventive system, method, software, busiriess and 
operating model pertain to much more than what is normally envisioned for conventional e-mail systems 
and methodologies. The inventive e-mail enhancement, extension, or replacement contemplates some 
30 generalized electronic content that is directed to one, a plurality, or a multitude of recipients. 

Recall that in greatly simplified terms, a story is a single, author once, play everywhere file or 
data/command structure that is interactive either on-line or off-line that can be used to distribute rich 
multimedia messages or other rich-media content to all e-mail enabled clients. Stories can be used to 
distribute and coordinate e-commerce transactions, order fulfillment, meeting scheduling. 
35 advertisements, catalog item descriptions, customized catalogs and brochures, holiday greeting cards, 
electronic storybooks, driving directions, vacation slide and picture shows, surveys, real-estate walk thm, 
medical care pamphlets, pharmaceutical information pamphlets, recipes, business presentations, party 
invitations, instructional manuals, entertainment, and numerous other applications, particulariy where the 
message consists of more than merely a text or symbolic message. Several of such exemplary 
40 applications include, for example, surveys, forms, contracts. 

Story content creation is advantageously automated and dynamically adaptive, because a story 
is optimized over a plurality of variables to selectively communicate elements of an e-mail message to e- 
mail client devices and users. Such variables include, for example, client device hardware capabilities, 




wo 02/10962 PCT/USO 1/2371 3 

11 

network connection characteristics and user preferences. Tills Is accomplished from a standpoint, for 
example, of CPU speed, display type, screen size, the existence of and or attributes of audio and/or 
video capabilities, data scalability, language, use of or not use of audio or visual content, nominal speed 
or bandwidth of all of the communication links and protocols, and the like, 
6 In preferred though not all embodiments, a final story is not generated until substantially all 

such relevant e-mail client Infomnation is determined during the time of connection of the client device. In 
a sense, the system and procedure of the present invention is contrary to other prevailing trends (which 
attempt to pre-fomi content so that is available as eariy as possible) in that StoryMail actually delays 
composition of the final message until it is ready to be received. For example, if It is determined that an 
10 e-mail client cannot view motion video but can display text and play audio, the story will be generated 
such that it does not Include motion video^liutxatheriexlual.and/or^udio elements . that communicate the 
intent of the e-mail publisher within the capabilities of the e-mail client 

In yet another example, even though a client device may be capable of receiving and rendering 
a very rich message, if the then prevailing communication channel is only supporting low-speed or low- 
15 bandwidth communication, a story is generated 6uch that the richness of the message is reduced so that 
the message is optimized for the attributes of the client device and the user preferences at that moment 
in time. 

Sometimes, the message may be optimized or neariy optimized to be received within any time 
constraints that may be imposed; however, unlike systems and methods that must satisfy real-time or 
20 near real time constraints, the story need not provide real-time delivery, as it is intended to be a 
messaging and communication system, method, and operating model, rather than a real-time rich-media 
broadcast or streaming system. In this regard, a story is a fully aware e-mail message that is optimized 
to substantially deliver the Intent of an e-mail publisher across the broad range of all e-mail client 
architectures. 

25 A story may further be optimized to comply with a predefined set of user defined preferences, 

making each story beneficially configurable for physically challenged individuals. This is because for 
every logical element (either text, sound, images, video, or the like logical elements) there is an 
underiying textual description of that logical element. In addition, there are contextual logical elements 
included as may be needed to insure that the intent of the message may be easily understood in text or 

30 audio only representations. An example of such contextual logical element would be a text element that 
provides an overview of what is on the screen to be rendered as text or audio in cases where some or all 
of the screen's visual elements can not be seen by the recipient on the receh^ing device. 

In a prefenred embodiment, all logical elements have corresponding semantic infonnation so 
that it can be known or determined which elements to use under varying circumstances. For example, 

35 the aforementioned contextual logical text element would have associated semantic flags packaged with 
it inside a story indicating that the element contains text providing an overview of the elements displayed 
on a screen for use when it is known that the redpient cannot view the screen. Such a case might be 
when a story player application Is used to render and control a rich media message for someone whose 
only means of communication to the rich media message playing application is over a voice only 

40 telephone connection. In other embodiments, an audio representation, either recorded or generated by a 
text to speech engine may provide audio information backup - contextual information, or semantic 
information rather than text. In this manner an individual can read text and the text can automatically be 
articulated for a blind individual. 
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In one embodiment, the Inventive system, method, and operating model are designed to 
interface with a peripheral device that generates a Braille or other tactilely sensible indicia corresponding 
to the story. This peripheral device may either be linked to a conventional client device, such as a 
computer, or integrated within the device. Using semantics, there is always an alternative sensory 
5 presentation mode. 

Stories are self contained and lightweight, meaning that stories have relatively small memory 
and processor requirements and can be played on dient devices the types and sophistication of which 
are virtually unlimited. A story is self contained because in at least one embodiment, a story is actually a 
single file that is made up of a number of component logical files. Each component file encapsulates, for 
10 example, one or more of computer program instructions, control information, user input forms, validation 
procedures^ and/or multimedia content. Each componentJQgrcaliile.lsjespectively. compressed. and -all 
of the component logical files are conrdsined, packaged, compressed again to generate the single story 
file. 

A story is lightweight not only because when it is executed, or played, a story's contents are 
15 selectively and sequentially decompressed. But also because a story only includes those elements that 
are optimized and compatible with the e-mail client's hardware capabilities and network connection 
characteristics, making stories lightweight (thin) enough to run on inexpensive information appliances or 
other devices. In fact one of the great advantages of the StoryMail system is its ability to support the 
hardware capabilities and network connection characteristics of virtually any dient device. In fact, a story 
20 can even be played on a dient device that is not multimedia enabled because a story always has a set of 
text that describes, or narrates any non-textual element of the story. The story also contains semantic 
flags indicating the circumstances under which to render all text or non-textual elements. 

A story according to embodiments of the invention is reliable because it is played in a novel 
run-time environment, wherein, unlike an HTML Web page where there may be links to other servers to 
25 provide further information, a story is a self-contained unit. The novel run-time environment is largely 
deterministic because of the self contained cooperative multitasking system employed in the playback 
engine and the explicit input buffer coding instructions with fixed size memory buffers. So if it runs 
conrectty one time on one device it will almost certainly run con-ectly most of the time on all devices. 

A run-time environment such as this is more reliable than, for example a pre-emptive 
30 multitasking system using the device's threading mechanism, or an architecture which allows for variable 
size buffering. Also in story messaging all content is present on the target device before the story is run. 
So unreliable connections to other devices or content on a network are unnecessary and part of a story 
cannot be missing since they are packaged together in a single logical file. 

Because a story is self contained and reliable, creation of story content can be completely 
35 automated, devices made today will be able to handle future content without upgrades. This provides for 
intelligent content spedfic scaling and compression, it is easily stored and exchanged between e-mail 
clients as a single file, for example, that can be: embedded in a Web page, embedded in an e-mail 
attachment, stored in ROM, streamed firom a sen/er, run as a MIME type, run as an ActiveX component, 
run as a plug-in, and/or run as an ActiveX component. 

40 Most story enabled devices will run or play a story in a window, or in a non-windowed operating 

environment such as occur on in basic or thin dient devices, on a display device screen. Such devices 
include, for example, a desktop computer, notebook computer, personal data assistant (PDAs), 
telephone, set-top box, movie marquee, infomnational kiosk. Intemet e-mail appliances, billboard. 
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microwave oven, point-of-sale displays, gasoline pump, vending machine, instnjctional appliance, 
automobile display device, global positioning system (GPS), point-of-sale display, and myriad of other 
device types are supported. In fact, a story can even be played on a client device that is not multimedia 
enabled because preferred embodiments of the inventive story always have a set of text that describes, 
5 or narrates any non-texhjal element of the story, along with semantic infomiation describing the role of 
each logical element. In one embodiment, a device may play a story entirely with voice commands and 
automatically articulated responses. 

It IS noted that although applicant describes embodiments of the inventive structure, method, 
computer program, operating model, and structure and organization of content used in or in conjunction 

10 with other aspects of the invention, the underlying inventive concept and indeed many embodiments of 
the Invention do not require all features described here. . Many such .stcuctures^nd.procedures though 
advantageous and desirable are optional. Including text behind each logical element of the story Is a 
prefened embodiment. Therefore, with respect to the structure and content of a story described here, it 
should be understood for example, that not ail stories must contain underlying text behind each logical 

15 element of the story. 

These optimizations make a story very flexible, scalable, and powerful. Unlike some 
conventional systems and methods, a story maintains a focus on the intent of the message and 
presen/es that message Intent in spite of its ability to selectively communicate elements to client devices 
and users. 

20 For example, in conventional video streaming systems the primary goal has been to maintain 

real-time transmission of the video stream and to relax quality to ttie point where almost all picture quality 
has been lost if necessary to maintain continuous operation. For an advertiser promoting a high-end 
product, such as example a diamond ring. It is very important to maintain the quality and darlty of the 
product image. If the transmitted image(s) of the diamond ring make tiie ring appear undesirable, the 

25 entire purpose for the advertisement is lost. Therefore, attempts should be made to customize 
composition of the message so that where possible the bright high-resolution image of the diamond ring 
is presented to the receiver, and if such presentation Is not possible tiien to provide an alternative 
possibly textual description of the ring which creates tiie same desire to own product as tiie bright dear 
image would. This particular example really illustrates the notion of selecting or substituting content to 

30 maintain the intent all of ttie StoryMail™ message independent of the device hardware capabilities or 
network connection characteristics and even to some extent independentiy of user preferences. 

The inventive structure and meUiod may be applied to on-line auctions as well and provide 
significant benefits here. For example, a story message provides rich product descriptions complete with 
BID forms; bid limit exceed notifications providing a bidder a chance to upgrade a bid from a form 
35 embedded in tine message without requiring tiie bidder to go to the action web site; and. bid accepted 
notification with transaction completion automation. 

Traditionally, on-line auctions require composing a product description that may not scale up 
and down depending on the device. Traditional on-line auctions typically require repeated visits tiie site to 
determine if a bid is accepted. Furthermore, traditional on-line auctions generally require furtiier visits to a 
40 Web site or the placement of a phone call to complete a transaction. 

It can be appreciated that stories can be used at point of sale to provide looping 
demonstrations and/or advertisements of a product. For example, a story can be embedded in read- 
only-memory (ROM) of microwaves, stereos, set top boxes, and the like. Playback of such a story can 
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be in the store that displays the story 180 enabled product for sale. The manner in which the story is 
played back may be modified by each viewer according to view preferences. For example the underlying 
content may have English, French, Spanish, and Russian audio and text content that may be selected by 
the viewer. Such input may be buttons on the playback device, a touch screen device, voice input, or 
5 other input devices as are known in the art. Additionally, story enabled devices, for example, soda 
machines, can be implemented to play media rich advertisement stories that can be updated using only a 
phone line to upload a different story. The content of such story may be communicated, for example 
overnight to a large variety of different device types, yet will be playable by all such device types. 

There are other exemplary applications for stories, for example, stories can also be used for 
10 meeting scheduling, advertising, catalog item descriptions, holiday greeting cards, electronic storybooks, 
drivirig directions, vacation slide and .picture shows, .sucvays, jBal^state.walk .throughs, medlGal care 
pamphlets, pharmaceutical information pamphlets, cooking or production recipes, business 
presentations, instructional manuals, entertainment, and numerous other applications where the 
message consists of more than merely the text message. 

15 We now describe aspects of an inventive next generation e-mail system that is used to 

generate, distribute, and play stories, in one embodiment, a story that is sent as a message from a 
server to a client device is called StoryMail. Referring to FIG. 1, there is a block diagram that illustrates 
aspects of an exemplary embodiment of a StoryMail system 300. StoryMail System 300 (also referred to 
simply as system 300) is a distributed client/sender system with sender peering. 

20 Sender/publisher 310 Is connected across 1/0 interface 312 to user interface 314. 

Sender/publisher 310, for example, can be a general-purpose computer, provides at least a subset of the 
information and content used to generate and transmit a story to sending story server 302. In other 
words, parts of a story may reside on any server anywhere or computer that can be addressed, that Is 
connected to network 306. In this case, sender/publisher 310 provides links, for example, a Uniform 

25 Resen/e Locator (URL) address of the document or other resource to be included in the story. 
Sender/publisher 310 includes a number of components which are described in greater detail below in 
reference to FIG. 2. 

I/O Interface 312 can be any type of I/O interface, for example, a peripheral component 
interconnect (PCI) bus interface, a SCSI interface, or the like. Sender/publisher 310 is also connected 
30 across I/O interface 308 to network 306. As an alternative to 312, I/O Interfaces 308 and 309 can be 
used if information is passed through networi< 306. I/O interfaces 308 and 309 can be any type of I/O 
interface, for example, a modem connected to a public telephohe network, a leased line, or a wireless 
radio wave or optical interface. Networic 306. for example^ can be a local area networic (LAN) or a wide 
area network (WAN). 

35 Network 306 is connected across I/O interface 304 to sending story server 302. Sending story 

server 302, for example.-is a general-purpose computer or device for generating and transmitting stories 
to client devices, such as conventional e-mail server 332. story enabled client 336, conventional e-mail 
client 340. and story enabled device 344. A greater detailed description including aspects of an 
exemplary embodiment of sending story server. 302 is provided below In reference to FIG. 4. I/O 

40 interfeces 304. 308, 309. 324. 326. 330, 334, 338, and 342 can be any type of I/O interface, for example! 
a modem connected to a public telephone network, a leased line, or a wireless radio wave interface. 

In one embodiment, the system of the invention includes receiving story sen/er 328. for 
example, is a general-purpose computer or device for transmitting stories to client devices, such as those 
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dient devices listed above. One difference between receiving story server 328 and sending story server 
302. for example, is that sending story senrer 302 is able to generate stories and distribute stories, 
whereas receiving story server 328 Is not able to generate stories but is able to distribute already 
generated stories. Receiving story server 328 is beneficial because it may contain functionality which 
5 can be used to eliminate the need for providing that same functionality in story enabled clients 336 and 
story enabled devices 344. This is advantageous because the computation and/or memory capacity of 
such devices is normally more limited than that of the servers 328. In addition, since there are likely to 
be many more story enabled clients 336 and story enabled devices 344, the implementation costs are 
lower if the functionality is contained on the servers 328 rather than on the story enabled clients 336 and 
10 story enabled devices 344. Examples of such functionality indude proxy server functions, placing stories 
into in-boxes, and security features such as decryption, authentication and digital signature verification. 

In one embodiment, network 306 is connected to conventional e-mail server 332 which is a 
traditional e-mail server used by a number of machines connected to network 306 to distribute and collect 
e-mail messages. Procedures for a machine to distribute and collect e-mail messages are known In the 

15 art. Conventional e-mail server 332 provides story messages to both non-story enabled devices, for 
example, conventional e-mail client 340, as well as story enabled dients and devices, for example, story 
enabled dient 336 and story enabled device 344. As will be described In greater detail below, the 
presence of conventional e-mail server 332 is not necessary for story enabled client 336 or story enabled 
device 344 to receive stories. However, the presence of conventional e-mail server 332 is necessary for 

20 conventional e-mail dient 340 to receive a story enabled message. In one embodiment, a story enabled 
message will not include a story, but rather includes Information indicating that a richer message, or story 
underiies the story enabled message. This embodiment is described In greater detail below in reference 
to FIG. 6 and FIG. 7. 

Story enabled client 336 includes, for example, computer program applications and data for 
25 playing a story received from a story server, for example, sending story server 302 and/or receiving story 
server 328. Story enabled client 336 is, for example, a general-purpose computer, a notebook 
computer, a personal digital assistant, a telephone, a set-top box, an Internet e-mail appliance, a movie 
marquee, an informational kiosk, a billboard, a gasoline pump, a vending machine, an instructional 
appliance, an automobile display device, a GPS system, a point-of-sale display, and the like.- Story 
30 enabled dient 336 starts life as a conventional email client 340. It becomes story email client 336 when 
story enabling software is downloaded or installed from a network or direct connection to another device. 
Story device 344 has the story enabling software built in by the manu^cturer. 

Conventional e-mail client 340 is a typical e-mail client, for example, a general-purpose 
computer that is not able to execute, or play a story. However, conventional e-mail dient 340 is able to 

35 receive e-mail messages that indude information indicating that a richer content message, or story is 
behind the e-mafi message. In one embodiment, besides including information that a story underiies the 
e-mail message, the e-mail also indudes, for example, an e-mail message that delivers the publisher's 
310 message in a traditional e-mail fomnat. Such traditional e-mail formats indude, for example, text, 
HTML and/or attachments. Such an embodiment is advantageous for a number of reasons. For 

40 example, while conventional e-mail dient 340 will not be able to play a story without upgrading its 
computer program applications, it will still receive content that corresponds to publisher's 310 message or 
promotion. Additionally, the message can be fonvarded to another e-mail dient device, for example, 
story enabled dient 336. wherein the richer message will be available to the other client device. 
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tn one embodiment, conventional e-mail client 340 upgrades its capabilities to enable it to play 
a story. In a situation where conventional e-mail client 340 upgrades Its computer program applications 
to enable it to play a story, conventional e-mail client 340 would become a story enabled client 336. In 
one embodiment, conventional e-mail client 340 can perform such upgrades, for example, by 
6 downloading a story player from a web site or an FTP site, or by loading a story player from a CD-ROM 
or diskette. In a preferred embodiment, conventional email client 340 upgrades by responding to a link 
provided in the email message, wherein the link points to a download image or site. 

Story enabled device 344 is manufectured with story functionality built in. Such devices include 
networked household appliances, cell phones, smart cards, and pagers. 

10 Each client device 336, 340, and 344 includes, for example, an e-mail program (not shown) 

that respectively receives and/or delivers e-mail respectively from/to one machine connected to network 
306 from/to another machine connected to network 306. To facilitate such reception and delivery, an 
email program utilizes Internet email protocols, for example, known P0P3 or IMAP protocols. In one 
embodiment, such an e-mail program is a conventional ennail program, such as Microsoft Outlook 

15 Express®. In another embodiment, the e-mail program is a special e-mall program designed specifically 
to receive and/or transmit stories to another client or device across network 306. 

Referring to FIG. 2, there is a block diagram that illustrates aspects of an exemplary 
sender/publisher 310. according to one embodiment of the present invention. Sender/publisher 310 
includes processor 142 connected across local bus 144 to memory 146. Processor 142 is used to 
20 execute computer program applications 148 and fetch data 150 from memory 146. Local bus 144 can be 
any type of bus, for example a peripheral component interconnect (PCI) bus, as long as local bus 144 
has a set of signal lines that can be used by processor 142 to transfer infomiation respectively to and 
from memory 146. 

Data 150 includes, for example, database 152 representing any combinations of textual 
25 infomiation, motion video, audio, forms, automation scripts, a story recipient list and any other message 
content, communication, or the like, that may be sent in an electronic format. A form can be any type of 
form or document, for example, a purchase order form, a registration or an application form. Typically a 
form provides an inquiry and provides some instructions for answering or responding to the inquiry. 
Database 152 is a standard database that can be created and managed using any of a number of 
30 conventional database tools. 

In one embodiment, database 152 includes, for example, textual descriptions in more than one 
language of a number of products, digital or binary images of the products, motion videos to advertise 
and illustrate the products, product identification numbers, audio dips to advertise and describe the 
products, and/or recipient Information, such as a list of e-mail addresses to which to send a story. 
35 Desirably, for every non-textual item of data in database 152. a textual description of that item of data is 
available. For example, if database 152 includes a color photo of a particular toy, there will be a 
corresponding text description of that toy. - 

In a preferred embodiment, a digital or binary image can have a set of scaled and color depth 
versions of the binary image. For example, if database 152 includes a 300 dots per inch (dpQ 24-bit color 
40 binary image of the cover of a book, database 1 52 will also include a 1-bit black and white representation 
of the image, an 8-bit and 16-btt gray scale representation of the image, and various resolutions of each 
of the resolutions, such as 100 bit and 200 bit resolutions. 
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In a preferred embodiment, scaling of logical story elements can occur at three different times: 
(1) wlien generating the message; (2) when executing the procedural elements of the message; and, (3) 
while the message elements are being rendered by the hardware spedfic functions (e.g., the HAL 
functions) that connect a portable story playback engine to actual device specific hardware. 

5 For example, in one preferred embodiment, sending story server (see FIG. 1) scales the story 

content when generating the message to conform to the story enabled clients* 336 hardware capabilities, 
network connection characteristics, and specified user preferences at the time that such Infomiation are 
determined (see FIG. 7. step 228). In yet another preferred embodiment, story player 194 (see FIG. 5) 
scales the content of the story when the procedural elements of the story are executed, or played. For 
10 example, a digital image may be scaled from 300 dpi to 200 dpi while the digital image is being 
displayed. In yet another embodiment, jstoiy.player^s .194.HAL.may..scale the^tory to fit into a particular 
display screen size and/or add scroll bars to the display so that an entire story can be viewed. 

Document 154 is author once infonnaUon created by using a number of structured document 
languages, for example, extensible markup language (XML), and Excel spreadsheet format, database 
15 records extracted with SQL, and the like. In a prefen*ed embodiment. Document 154 is an XML 
document Document 154 can be created in a number of different ways. For example, Document 154 
can be created using any of a number of known XML Editors, Word processors, device drivers, and the 
like. 

Referring to FtG. 3, there is a block diagram that illustrates aspects of an exemplary Document 
20 154 used by sending story server 302 (see FIG. 1) to generate a message/promotional story 180, 
according to one embodiment of the invention. FIG. 3 uses a structured document syntax pseudocode 
that does not conform to any one particular structured document syntax, but is rather used only for 
purposes of illustrating the invention. In a prefen-ed embodiment, XML document 154 includes a tag that 
identifies a particular storyteller 172 (see FtG. 4) and a unique identifying attribute of the particular 
25 storyteller 172. 

The pseudocode describes a set of tags that each respectively in turn describes an element, 
wherein each tag is followed by an equals sign ("=") and a corresponding textual description that defines 
some other property of the element. The property can be either an absolute description string, an 
embedded document, or a string that includes a URL and a document name. If a descriptive property is 
30 a URL and document name, the URL will be accessed and the Identified document downloaded when 
document 154 is parsed by story server 302 (see FIG. 4) during one time processing of document 154, 
as described in greater detail below in reference to FIG. 4. 

Line 400 includes a tag that identifies a "STORYTELLER ID" element, which is followed by an 
attribute of the element, "ecoupon 5". "Ecoupon 5" identifies a unique storyteller 172 (see FIG. 4) in story 
35 sender 302 (see FIG. 1). In this example, ecoupon 5 storyteller 172 will be used to generate a form and a 
user interface to be used by a sender/publisher 310 (see FIG. 1) to generate and distribute one or more 
•ecoupon stories 180 (see FIG. 4) to distribute to one or more customers as dictated by sender/publisher 
310 (see FIG. 1). Storytellers 172 are described in greater detail below in reference to FIG. 4. 

Line 402 includes a tag that identifies a "PRODUCT VIDEO** element, which is followed by an 
40 attribute of the element that identifies a particular MPEG motion video, 
"BOOKRETAILER.COM\PROMO24\ISBN12980.MPG" that is to be distributed in a story 180 (see FIG. 
4). In this example, the motion video is identified by a URL link to the author's database 152 (see FIG. 
2) and a corresponding motion video document. 
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Lines 404 and 406 include tags that identify respective product picture elements, wherein eadi 
respective tag identifies a specific binary image (or other digital image or graphic) that has a respective 
different pixel resolution. For example, line 404 includes a tag that identifies a "PRODUCT PICTURE 
lOODPI" element, which is followed by an attribute of the element that identifies a 100 dpi binary image, 
6 such as the JPEG image "BOOKRETAILER.COM\PROMO24\lSBNl^980 lOODPLJPG". Whereas, line 
406 includes a tag that identifies a TRODUCT PICTURE 200DPr element, which is followed by an 
attribute of the element that identifies a 200 dpi binary image, such as the JPEG image 
"BOOKRETAILER.COM\PROMO24\ISBNL2980 200DPI.JPG". Both binary image files are Identified by 
respective URL links to the author's database 152 (see FIG. 2) and a corresponding JPEG document. 

10 Lines 408 and 410 include tags that identify respective audio file elements, wherein each 

respective tag identifies a specific audio file. that.isju:npieroeritedin.axiifferant language. In particular, line 
408 includes a tag that identifies a TRODUCT AUDIO ENGLISH" element, which is followed by an 
attribute of the element that identifies an audio file that Is implemented in English 
("BOOKRETAILER.COM\PROMO24\lSBNL2980 ENG.WANT). Whereas, line 410 includes a tag that 

15 identifies a "PRODUCT AUDIO SPANISH" element, which is followed by an attribute of ttie element that 
Identifies an audio file that is implemented in Spanish CBOOKRETA1LER.COM\PROM024\ISBNL2980 
SPAN.WAV"). Both audio files are Identified by respective URL links to the author's database 152 (see 
FIG. 2) and a conesponding WAV document. These tags are merely illustrative and not exhaustive of 
the type of tags, file elements, and/or Identifiers that may be used. 

20 Lines 412 through 418 include tags that identify respective text file elements, wherein each 

respective tag identifies a specific text file with analogous Intent written in a different language. In 
particular, line 412 includes a tag that identifies a "PRODUCT TEXT ENGLISH" element, which is 
followed by an attribute of the element tiiat identifies an ASCII text file that is implemented in English 
rBOOKRETAILER.COM\PROMO24\lSBNL2980 ENG.TXT"^. 

25 Whereas, line 414 Includes a tag that identifies a "PRODUCT TEXT MANDARIN" element, which is 
followed by an attribute of the element that identifies a Unicode text file tiiat Is written in Mandarin 
(''BOOKRETAILER.COM\PROMO24\ISBNL2980 MANDARIN.UNI") and the like. Each text file of tiiese 
examples is identified by respective URL links to the authors database 152 and a con-esponding text or 
Unicode document. 

30 Line 420 includes a tag that identifies a respective "PRODUCT SKU" (stocking unit) number 

element, which is followed by an attribute of the element, in particular an absolute value that identifies the 
promotion's targeted product's SKU. Line 422 includes a tag that identifies a respective TULFILLMENT 
SERVER URL" element, which is followed by an attribute of the element, in particular a URL for the 
promotion's fulfillment server. A procedure for using such a fulfillment server is described in greater 

35 detail below in reference to FIG. 7. 

Lines 424 - 428 Includes tags that identify story 180 (see FIG. 4) recipient or customer 
information. For example, Line 424 includes a tag that Identifies a "FIRST NAME" element, which is 
followed by an attribute of the element, in particular, the name "DAVE". Line 426 Includes a tag that 
IdentiTies an "EMAIL ADDRESS" element, which is followed by an attribute of the element, in particular 
40 an e-mail address, such as for example to "someone @ somewhere . com" that identifies the recipient's 
e-mail address, and the like. 

Line 430 includes a tag that Identifies a respective "MASTERDATABASE ID" that is used by 
sending story sender 302 (see FIG. 1) to identify those portions of a master parts database to use for a 
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particular message/jpromotion. In one embodiment of the invention, sending story server 302 returns the 
message/promotion ID 430 to sender/publisher 310 (see FIG. 1), such that the message/promotion ID 
430 is unique to any other message/promotion IDs in a master parts database. Such a 
message/promotion ID can be used by publisher 310 to modify and/or delete the information that 
5 con-esponds to a message/promotion in a corresponding master parts database. Such a master parts 
database is described in greater detail below in reference to FIG. 4. In one embodiment, such a 
message/promotion ID is used by publisher 310 to send a con-esponding message/promotion to 
redpients in batches, each batch job referencing the message/promotion ID. 

It can l>e appreciated that document 154 can include any number of user defined elements and 
10 respective attributes of such defined elements. As will be discussed in greater detail below, recipient 
Infpnnation. for example^ that information .illustrated Jn Jines 424-428, can l>e supplied to sending story 
server 302 (see FIG. 1 and FIG. 4) at any time through a number of different mechanisms. 

in a preferred embodiment, for at least a subset of the non*textuaI data in Document 154, a 
textual description of that non-textual data Is identified in Document 154. In yet another embodiment, for 

15 every textual description, there is a corrfesponding text description identified in more than one language, 
for example, English and Spanish text descriptions. In yet another embodiment, if Document 154 
identifies an audio file in a particular language. Document 154 also Identifies other audio files that have 
analogous content to the audio file in different languages. It may also provide a textual transcription 
and/or a summary of the audio files for presentation when the receiving device does not provide audio 

20 playback or the recipient chooses not to receive the content in an audio format. In yet another 
embodiment, if document 154 includes a binary image (either embedded or via a URL) having a 
particular resolution, document 154 also includes other resolutions of the binary image. Including such 
multiple resolutions of a binary Image is benefidal for the reasons discussed in greater detail above. 
Furthemnore, not only may the binary or digital images be different resolution, they may be different types 

25 of files, such as for example, a bit-mapped image (*.bmp), a TIFF format image (*.tif). a JPEG 
compressed image (*.jpg}, or the like. 

Applications 148 Indudes, for example, one or more of the following computer program 
applications: (a) a Web browser (not shown) such as Netscape NavtgatortD or Microsoft Internet 
ExpIorer<H), for accessing a Web page served from sending story server 302; (b) any of a number of 
30 commerdally available XML Editors for creating document 1 54. Other applications may also t>e stored or 
provided, for example, multimedia authoring systems, story mail applications, templates for other 
applications such as spreadsheets, multimedia and/or XML database managers. 

Sender/publisher 310 also Includes, for example, a database stored or referenced which 
indudes at least a subset of the content necessary to represent the infomnation and data in a story. 

35 Refen-lng to FIG. 4, there Is a block diagram that illustrates aspects of an exemplary sending 

story server 302. according to one eml>odiment of the invention. Sender 302, includes processor 162 
connected across local bus 164 to memory 166. Processor 162 is used to execute computer program 
applications 168 and fetch Information from data 170. Local bus 164 can be any type of bus, for 
example, a peripheral component interconnect (PCI) bus, as long as local bus 164 has a set of signal 

40 lines that can be used by processor 162 to transfer information respectfully to and from memory 166. 

There may be any number of sending story servers 302 and receiving story servers 328 (see 
FIG. 1). In such a system 300, each server 302 and 328 will respectively communicate diredly with 
another respective server 302 and 328, or with one or more conventional e-mail servers 332 (see FIG. 1) 
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using one or more communication protocols, for example. SMTP/ESMTP/MIME/HTTP communication 
protocols. (For purposes of this description, wherever SMTP is used. ESMTP is also applicable). 
Sending story server 302, using information that is provided both by sender 302 and story enabled client 
336, generates and distributes stories 180 as e-mail, or StoryMail. Such infonmation can be provided to 
5 sending story server 302 through a number of different mechanisms. For example, the information may 
be provided if sender/publisher 310 (see FIG. 1) sends document 154 aaoss I/O interfiace 308 to server 
302. (The contents of document 1 54 are described in greater detail above). 

In one embodiment, sending story server 302 also serves one or more documents on the 
Worid Wide Web (WWW) identified by a unique Uniform Resource Locator (URL) that allows a user of 
10 sender 302 to input information through networit 306 into server 302 that will be translated into document 
154. There are .a number .of Jcnown..computer..programs that are used to translate infomiiation Mo a 
structured file format, for example, XML. Aspects of an exemplary procedure used by sending story 
server 302, sender/publisher 310, and story enabled client 336 to exchange information to generate, 
distribute and play story 180 are described In greater detail below in reference to FIG. 5 and FIG. 6. 

15 Applications 168 Includes, for example, composition engine 170, storyteller 172. e-mail engine 

173, and other applications 174. Each of these applications 168. and in particular, composition engine 
170, storyteller 172. and e-mail engine 173 work cooperatively to build story 180. Composition engine 
170 provides, for example, a framework of data structures, a rurvtime model, a compiler, an application 
programming interface (API), and conventions for building an almost endless variety of different stories 

20 180 that conform to a story njn-time model. The story run-time model is designed such that a story 
playback engine on a story client can be simple in complexity and fast. The run time model provides a 
lightweight cooperative multitasking multimedia and central application framework. (Such a run-time 
model described In greater detail below). 

Composition engine 170 passes information provided by sender/publisher 310 (see FIG. 1), 
25 such that the information is represented in a procedural data format that is not a flat data format 
Advantageously the technologies are designed for the procedural content to be fully corhputer-generated, 
that is, without manual user intervention. (Manual building is possible but it is not preferred or even 
desirable.) In one embodiment of the invention, industry standard XML interfaces are used to 
completely automate one time processing of such provided information, such that existing authoring tools 
30 and content formats, for example, JPEG, AVI, MPEG, MP3, and the like, are supported through a simple, 
yet powerful transcoding mechanism of the invention. 

To accomplish this, composition engine 170 performs one-time processing of the provided 
information such that the resulting procedural fonnat of the information for example, is a sequenced set 
of data, for example, computer program instructions or operation codes (op codes), control infonmation, 
35 parameters and media parts. The phrase "sequenced set" means that the data is organized into a time 
line that dictates the rendering and navigational characteristics of a story 1 80. This time line may include 
procedural tests, branches, jumps, conditional statements, and the like so that the rendering may not 
ultimately be perfectly linear oi^sequential. 

For example, such a sequenced set of data nnay include a first set of computer program 
40 instructions to display a graphic. The first set of computer program instructions is followed, for example, 
data used by a story player to display navigational buttons on the story receiving devices display. 
Desirably, each media part is assigned an absolute priority that controls when and if a particular media 
. part will be rendered. 
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The computer program instructions specify operations to render graphical user interface (GUI) 
components, media parts, and provide procedural control to user interaction with the GUI components. 
The control information, for example, provides offsets into the sequenced set of data that indicate where 
particular media parts are located. In one embodiment, control information also provides a set of 
semantics and flags for each logical element of a story to maintain the intent of the message on ail 
receiving devices. 

in yet another embodiment, control information, for example, Includes an array of hot spots, 

one hot spot for every logical element. Such logical elements include, for example, button controls, text 
input controls, bitmaps, areas wherein motion video will be displayed, text boxes, decorative elements, 
and the like. Each hot spot is associated with a rectangular region of the receiving devices' screen 
display .(if one is avaOable). TJtie .rectangular iBgion .facilitates event IdentifiGation. -Such event 
Identification is associated with user instantiated events. For example, if a user selects, for example, with 
a mouse device, a region identified by the rectangle associated with a particular hotspot, the operating 
system will generate a button click event which, as will be described in greater detail below is processed 
by a story player in the context of the logical element selected. 

Each hot spot is further identified as being either active or inactive. An active hotspot is a 
hotspot that generates an event when a user selects a region within the rectangular area associated with 
the hotspot. In contrast, an inactive hotspot does not generate an event when a user selects a region 
within the rectangular area. 

In a preferred embodiment, each hotspot area is Implemented as a bitmap. Aspects of an 
exemplary procedure for a story player to use an array of hot spots to play a story is described in greater 
detail below in reference to FIG. 6. 

In addition to areas the hotspot array may also contain semantic and altemative rendering 
element Identifiers (Ids) for logical elements other than areas. For example, a hotspof s semantic flags 
may indicate that there is overview test available that describes the overall purpose of a screen of 
information, and the hotspot may also contain the id of the overview text element of the story. 

Aspects of control and control information include memory buffer creation, memory buffer 
loading, branching, condition or searching, layout, subroutines, linkage between different sequences of 
instructions, decompression and compression and file packaging, e-mail access for sending messages, 
requests for subfiles. 

In one embodiment, each opcode, parameter and offset is a 32-bit word. This is beneficial for 
a number of reasons. For example, portability and adaptability are supported by the use of fixed size 32- 
bit words. A 32'bit fixed size word is advantageously used for representing a large dynamic range of 
value and is highly compressible because both instructions and parameters are designed to have mostly 
small integer values. The fbced size makes things very scalable and processor words are always aligned 
along the word boundary. 

Because of this suitably diosen fixed size, the playback code, or the story 180 is also small 
and reusable. Parameters and opcodes can be processed by the same code and operation, for example, 
addition operations can be performed without the need for size conversion of the code. An additional 
advantage is that the opcodes and data are aligned In memory for fast access. Aspects of an exemplary 
procedure to use such a procedural data layout to play story 180 are described in greater detail below in 
reference to FIG. 5 and FIG. 6. 
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Such one-time processed information Is stored by composition engine 170 as a set of master 
parts data into master parts database 178. Desirably, each set of master parts data Is identified by a 
unique identifier that can later be used by sender/publisher 310 to access, modify, and delete the 
contents of a particular set of master parts data, in master parts database 178. The set of master parts 
5 data can be used by sender/publisher 310 (see FIG. 1 and FIG. 2) to generate and distribute any number 
of stories 180 to targeted e-mail enabled clients. 

In one emlx>diment, composition engine 170 is eminently portable, meaning that it may also t>e 
embedded In other devices besides sending story server 302. For example, composition engine 170 
may be embedded, for example, Into a digital camera. A single global data structure allows the 

10 Implementation of composition engine 170 code as a set of C++ objects, composition engine 170 code is 
reusable and can be instantiatedjnorB.lhan oneiime..An .additional advantageofthls-ls tiiat -applications 
including composition engine 170 will be easy to build. Furthemnore sizes of all program variables are 
explicitly defined and there Is built-in support for little-endian and big-endian systems. A thin hardware 
extraction layer (HAL) and the ability for all text to be represented in ASCII or Unicode also supports 

15 portability, in combination, all of these aspects make a story quickly and easily portable to a broad range 
of devices, able to handle neariy all the computer programming instruction sets or languages. 

Story teller 172 includes, for example, a set of programmed logic that will select at least a 
subset of a particular set of master parts data in master parts database 178 to build story 180. Because 
composition engine 170 represents the provided information in a procedural format, a story 180 is just 

20 one big procedural language/data/environment. In a preferred embodiment, a story 1 80 is part of the 
same procedural language including the content, decompression, rendering, layout, hotspot responses 
and navigation. In some aspects, a story 180 may be viewed as a self-contained ultra-low overhead 
multi-threaded run-time system. For example, a story 180 generates video fi^mes by executing 
sequences of instructions. This allows for mixing of different video decompression/reconstruction 

25 algorithms within a single frame. For example, a motion compensation vector equivalent for a whole 
frame can be applied using a single instruction which moves rectangular parts of one picture into another. 

In one embodiment, storyteller 172 builds a story 180 from the master parts database 178 in 
response to a message from StoryMail enabled client 336 (see FIGS. 1 and 4). (Such a message is 
described in greater detail below in reference to FIGS. 5 and 6). In this embodiment, the message will 

30 Include a unique Identifier, such as the unique identifier discussed above, to determine which set of 
master parts data to use to build a story. The particular master parts that a storyteller 172 will select to 
piece together story 180 together depends on the purpose of storyteller 172 and the particular hardware 
capabilities, network connection characteristics, and user preferences associated with a targeted story 
enabled client 336 (see FIG. 1 and FIG. 4). Aspects of an exemplary procedure to send sen/er 302 such 

35 capabilities, characteristics, and preferences are described in greater detail below in reference to FIG. 5 
and FIG. 6. 

The purpose of storyteller 1 72 can include any one of the exemplary applications of a story 1 80 
that were discussed in greater detail above or other purposes. In one embodiment, sending story server 
302 includes any number of pre-configured storytellers 172, wherein each storyteller 172 will have a 
40 unique such purpose. For example, a first storyteller 172-1 may be used to build an e-coupon story 180, 
a second storyteller 172-2 may be used to build a parts catalog story 180, and the like. 

In yet another embodiment, the invention contemplates that sending story server 302 will serve 
a Web page interface (not shown) whereby publisher/sender 310 creates and modifies storytellers 172. 
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For example, in one embodiment, such a Web interface provides a set of button controls that when 
selected by a user allows the user to: (1) add logical story elements, for example, an MPEG file, to 
master parts database 178; (2) select portions of such logical story elements, for example, a user selects 
a particular picture and a particular video to include in a story 180; (3) spedfy the dimensions of portions 
5 of the story, for example, a user may specify that the dimensions of a particular sequence of logical story 
elements are to be of a particular width and height; (4) order the logical story elements on a time line, and 
take into consideration any user navigation; and. (5) define a set of templates, wherein a particular 
template specifies, for example, the particular operating parameters and rules used to scale the logical 
story elements to optimally play on a particular story enabled client 336 (see FIG. 1). 

10 E-mail engine 173 is used to both send and receive e-mail respectively to/from 

sender/publisher 310, stojy enabled xUent.336 .and .conventional e-mail ■client^40. Conventional e-mail 
engines are known in the art of internet e-mail messaging. Aspects of such e-mail messages are 
discussed in greater detail below in reference to FIG. 5 and FIG. 6. 

Referring to FIG. 5, there Is a block diagram that illustrates aspects of an exemplary story 
15 enabled client 336 (client 336), according to one embodiment of the present invention. Client 336 
receives and plays stories 180, Client 336 can also fonward story 180 to other e-mail enabled clients, for 
example, another story enabled client 336 and/pr conventional e-mail cllerit 340 (see FIG. 1). To 
accomplish these tasks, client 336 includes processor 184 connected across local bus 186 to memory 
188. Processor 184 is used to execute computer program applications 190 and fetch data 198 from 
20 memory 188. Local bus 186 can be any type of bus, for example, a peripheral component interconnect 
(PCI) bus, as long as local bus 186 has a set of signal lines that can be used by processor 184 to transfer 
information respectfully to and from memory 1 88. 

Data 198 includes, for example, e-mail message 200. which is sent to story enabled client 336 
by sending story server 302 (see FIG. 1). Aspects of an exemplary procedure for sending story enabled 

25 client 336 e-mail message 200 are described in greater detail below in reference to FIG. 5 and FIG. 6. In 
one embodiment, e-mail message 200 includes, for example, novel story e-mail, which indicates to story 
enabled client 336 that a richer content story 180 is behind e-mail message 200. Story enabled client 
336 receives a mail message 200 before it receives story 180. As will be described in greater detail 
below in reference to FIG. 5 and FIG. 6, in a prefenred embodiment of the invention, story 180 is only 

30 received by story enabled client 336 after story enabled client 336 collects its e-mail from an e-mail 
sen/er, for example, conventional e-mail server 332 (see FIG. 1). 

In one embodiment, story header 201 includes, for example, story teller ID 202, data set ID 
204, and a URL 206. Story teller ID 202 identifies a particular story teller 172 (see FIG. 4) used by 
sending story server 302 (see FIG. 1) to build story 180. Aspects of exemplary procedure for sending 
35 story sender 302 to build story 1 80 are described in greater detail above in reference to FIG. 2, FIG. 5 and 
FIG. 6. 

Data set ID 204 is used to identify a data set that corresponds to at least a subset of the 
Information in master parts database 178 (see FIG. 4) that will be used by sending story server 302 to 
generate story 1 80. URL 206 Identifies the URL of the particular sending story sender 302 that sent client 
40 336 e-mail message 200. Although a conventional mandatory return path e-mail header (not shown) 
may also Identify the particular story sen/er 302, the URL information is beneficial because story 
messages may come from different servers belonging to different service providers or sender/publishers 
310 (see FIG. 1). 
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Although, embodiments of the invention contemplate that story 180 may be fonvarded by story 
enabled client 336 to another device, in a preferred embodiment, story enabled client 336 does not 
fonward story 180 to another device, but rather e-mail message 200 is forwarded to another device. Such 
other devices include, for example, another story enabled client 336, a conventional e>maii client 340, 
5 and/or a story enabled device 344. After a targeted device receives the fonA^arded e-mail message 200, 
any corresponding collection request by the targeted device associated. with e-mail message 200 is 
redirected to sending story sen/er 302, such that sending story sen/er 302 detenmlnes whether the target 
device is story enabled or not 

If the targeted device is story enabled, sending story server 302 determines, for example, the 
10 particular hardware characteristics, network connection characteristics, and any user preferences 
associated with the targeted device before sending .story .180 to .the .targeted .device. Aspects of an 
exemplary procedure to make such a determination are described in greater detail below in reference to 
FIG. 5 and FIG. 6. This level of indirection ensures that an optimized story 180 will be forwarded to story 
enabled clients 336 and story enabled devices 344. This level of indirection also ensures that if the 
15 targeted device is not story enabled, that the targeted device, although not receiving story 180, receives 
conventional content associated with the mail message 200 along with the novel story header 201 
information. As described in greater detail above, in one embodiment, such conventional content is 
determined by sender/publisher 310 (see FIG. 1) and storyteller 172 (see FIG. 2) upon creation of a 
message or promotion that corresponds to story 180. 

20 E-mail message 203, includes, for example, story 180. In a preferred embodiment, e-mail 

message 203 is received by story enabled client 336 after sending story server 302 has determined story 
enabled client's 336 particular hardware characteristics and any user preferences. In a preferred 
embodiment, story 180 Is scaled to story enabled client's 336 particular hardware characteristics, network 
connection characteristics, and user preferences. 

25 Applications 190 includes, for example, information provider 192, story player 194, and other 

. applications 196. Information provider 192. for example, sends story enabled client's 336 hardware 
capabilities, network connection characteristics and any user preferences to sending story server 302 
(see FIG. 4). Such capabilities and characteristics (discussed in greater detail above) are typically 
obtained by querying operating system software (not shown) that controls the execution of computer 

30 programs and provides such services as hardware management, computer resource allocation, 
input/output control, and file management in story enabled client 336. 

Information provider 192 determines any user preferences in a number of ways. In one 
embodiment, information provider 192 displays a GUI onto a display device (not shown) connected to 
stoiy enabled client 336. The GUI will have one or more user interface controls, for example, a dialog 

35 box. an edit control, and/or a combination box, to the end-user for end-user selection and input with 
respect to a predefined number of preference categories. Such categories include, for example, a 
preferred language, message size limits, message download time limits, message filters (for example, no 
e-coupons), data encryption requirements, and security requirements.. (Either limits may be greater or 
less than a default set of time limits). In one embodiment, if there are a number of preferences, certain 

40 preferences will be given a higher priority than other preferences. In a preferred embodiment, such 
preferences are stored in data 198 as a text file (not shown) in a structured file format, for example, XML, 
that can be edited by a user with using a text editor. 
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Story player 194, for example, executes^ or plays story 180. As described in greater detail 
above in reference to FIG. 4, story 1 80 includes one or more of op codes, parameters, offsets and media 
parts. To play story 180. player 194 sequentially parses story 180 to extract these op codes, control 
infonnation (parameters and offsets), and media parts. As each op code is extracted, player 194 will 
5 match the op code to a particular computer program instmctlon, or procedure, which is a logical set of 
computer program instructions. There are a number of known procedures that can be used to map such 
opcodes to computer program instructions procedures. For example, a simple C programming language 
case statement can be used to perform such mapping. 

Story player 194 will jump to a procedure that corresponds to the opcode and begin a set of 
10 corresponding computer program instructions. In a preferred embodiment, such computer program 
instructions are C instmctions. If the computer.prograra .instruction xequires xx)rresponding parameters, 
the required parameters are extracted on an as needed basis from story 180. In one embodiment, 
parameters can signal the parsing of other parameters from the stack. There are a number of well known 
ways that a specific number and specific type of parameter can be mapped to a computer program 
16 instruction. For example, the number and types of parameters can be hard wired in the implementation 
of a computer program instruction. If a parameter Is an offset to a media part of story 180, th^ offeet is 
used when playing story 180 to extract the data for the particular media part when necessary. After a 
procedure returns a status code to story player 194, an instruction pointer points to the next opcode to be 
executed as described atx>ve. 

20 Story player 194 advantageously implements cooperative multithreading and synchronization 

through resource constrained retry at the instruction level. To provide such advantages, each procedure 
in story 180 returns one of a number of possible status codes, for example, success, retry, and yield 
status codes. In one embodiment, story player 194 executes sequences of instructions for a thread as 
long as the instmclion functions return a status code of "success". Upon receiving a status code of 

25 success, a next thread is executed by story player 194 under similar constraints. Any instruction that 
takes a predetemiined amount of time to complete will retum a "yield" status code, indicating to story 
player 194 that other threads should be executed. Upon receiving a yield status code, story player 194 
stops executing the thread and places it onto a queue for later execution. Such yield status codes are 
inserted at appropriate places in story 180 by story teller 172 when story teller 172 creates story 180. 

30 Certain story 180 instructions are executed on a time line as described In greater detail above 

in reference to FIG. 4. Such instructions are so tagged with a "wait until time" instruction by storyteller 
172 (see FIG. 4) before being placed into a master parts database 178. Story player 194 will wait until 
the indicated time to execute such instructions. If story player 194 encounters such an instruction and it 
is not time to execute the instruction, story player 194 will retry the instruction at another time. 

35 Any Instruction encountered by story player 194 that requires a memory buffer, wherein the 

memory buffer is not available, is placed on a queue such that story player 194 will retry the instruction at 
a later time wherein such memory resources may be available. In one.embodiment. story player 194 
identifies "wait for event* flags to synchronize story 1 80 instructions. 

In one embodiment, story player 194 presents a purchase button to a user that Is used to 
40 provide a response to the story 180. To implement such an embodiment, the HAL identifies a user 
selection in the rectangular area defined by a particular hotspot associated with the button. (Hot spots are 
described in greater detail above in reference to FIG. 4). Upon such a selection story player 194 
executes a story procedure or story thread associated with the selection. 
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Other applications 196 include, for example, an optional e-mail client application, for example, 
Microsoft Outlook Express®, that provides e-mail receipt and delivery capabilities to story enabled client 
336 using Internet e-mail protocols. In one embodiment, such Intemet e-mail protocols include, for 
example, P0P3 and IMAP protocols. In one embodiment such e-mail receipt and delivery capabilities 
5 are provided by story player 1 94. 

Refening to FIG. 6, there is a block diagram that illustrates aspects of an exemplary procedure 
210 to generate and distribute StoryMail messages 200 (see FIG. 4) to e-mail enabled clients, for 
example, StoryMail enabled client 336 (see FIGS. 1 and FIG. 5) or conventional e-mail client 340 (see 
FIG. 1). To better describe procedure 210. the following description references structure that are 
10 respectively illustrated in FIG. 1 , FIG. 2, FIG. 3. and FIG. 4. 

Step 212 provides, for example, multimedia coriteril and/or message parameters to story 
server 302 (see FIG. 4). Such message parameters correspond to the multimedia content For example, 
a message parameter is a discount rate. With respect to a targeted promotion story, which were 
described in greater detail above, such multimedia content includes, for example, product desaiptions, 
15 promotional information, customer specific infonnation and/or pictures to the story server 302 (see FIG. 
1 and FIG. 4). 

As described above, in one embodiment, sender/publisher 310 (see FIG. 1 and FIG. 2) sends 
such content in Document 154 (see FIG. 2). In yet another embodiment, sender/publisher 310 (see FIG. 
1) accesses a URL that corresponds to a Web page (not shown) served by sending story server 302, 
20 whereby a user could input such content to sending story server 302. Such content is described in 
greater detail above in referent to FIG. 2. However, such content also includes, for example, the identity 
of a specific storyteller 172 to be used to generate a story 180 (see FIGS. 3 and 4). As described above, 
there can be a number of different storytellers 172, wherein each respective storyteller generates a story 
180 with a specific predetenfnined Intent. 

25 For example, if sender/publisher 310 is an Intemet book, music and video retailer that offers 

music CDs, video, DVD. computer games and other products, the specific storyteller 172 may be used to 
build a parts catalog story 180 to be distributed to retailers, or the specific storyteller 172 may be selected 
to generate a holiday card story 180 to be distributed to customers. 

Step 218 performs one time processing of the content as described in greater detail above in 
30 reference to composition engine 170 as illustrated in FIG. 4. Step 220 returns a unique master parts 
Identification to sender/publisher 310. As described above, such an Identification is used to Identify the 
particular set of master parts data that corresponds to the one time processed content. This identification 
can be used by senHer/publisher 310 to access, modify and delete the one time processed information 
from sending story server 302. as welt as to send new messages using the same master infomnation as 
35 default content. 

Step 220 sends e-mail message 200 (see FIG. 5) to each recipient that is Identified in the 
provided content (step 212). /^<s described in greater detail above in reference to FIG. 5. e-mail message 
200 is an e-mail message that includes story header 201. In this step, a recipient can' be either a stoiy 
enabled client 336 (see FIG. 1), a conventional e-mail client 340, or a story enabled device 344. 

40 Step 222 intercepts an e-mail collection request from the e-mail message 200 receiver. Step 

224 evaluates whether the ermail message 200 receiver is story enabled, for example, a story enabled 
client 336. If not, step 226 sends the contents of e-mail message 200 to the non-story enabled device. 
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for example, conventional e-mafi client 340 (see FIG. 1). Otherwise, procedure 210 continues as 
illustrated in FIG. 7. 

Referring to FIG. 7, there Is a block diagram that illustrates aspects of an exemplary procedure 
to generate and distribute StoryMail, according to one embodiment of the present Invention. 

5 Step 228 gets story enabled client 336 icrformation. As described above, such Infomnation 

includes corresponding hardware capabilities, network connection characteristics, and any user 
preferences. In a preferred embodiment, such capabilities, characteristics and preferences are 
represented by story enabled client 336 in a structured file fomnat, for example, as an XML document. In 
a prefenred embodiment, qurck communication protocols are used between story servers 302 and 328 
10 and story enabled client 336 respectively for intra-seiver and server client communications, for example, 
•HTTP communication protocols. 

For purposes of illustration, story enabled client 336 could represent its particular capabilities 
characteristics and preferences in a staictured file format as follows. "CPUSpeed = 300" indicates that in 
the client 336 CPU speed is equal to 300 MHz. CPU or processor speed criteria may be used to 

15 influence the generation of an optimized story in that the CPU may not be fast enough to process large 
video clips In real time. A video clip with small dimensions (width and height) might be used instead. Or 
a signal picture may repress the video content instead of a video stream. "ScreenColopsyes" indicates 
that the client 336 display device can display color binary images. ■'Sound=yes'* indicates that the client 
336 includes a sound card, chip, or other sound or audio regeneration or playback means and that the 

20 data element that includes audio can be used to create a story 180. "LanguagePreference=English" 
indicates that the user of client 336 prefers to receive content in the English language. 
''CommunicationsSpeed=28800'* indicates that the client 336 is connected to a 28.8 K-baud Internet 
connection and is able to receive, for example, single pictures but not rich media such as motion video 
without incurring undue transmission delay. In one emt)Odiment, such capabilities, characteristics and 

25 preferences are sent to the URL of sending story server.302. which was included in the story header 201 
(see FIG. 5). 

Step 230 generates the story 180 (see FIG. 4 and FIG. 5) using a particular storyteller 172 
Identified by story teller ID 202 (see FIG. 5) in e-mail message 200. To accomplish this, the specific 
storyteller 172 selects, or strings together only those portions of the set of master parts (identified by the 

30 date set ID 204, see step 219) in the master parts database 178 (see FIG. 4) that are compatible with 
each of the following: the capabilities, characteristics and preferences identified in step 228; and, the 
content which is compatible with the purpose of the specific storyteller. While stringing together such 
infonnatlon, the specific storyteller 172 may create several original logical files, compress them, and 
compress each of the compressed logical files into a final single file. The logical order of the data in the 

35 each respective original single file is maintained in the headers of a sequence of sub-files that are 
automatically generated from each respective original logical file. Such a logical order is advantageously 
used by sending story server 302 (see FIG. 1) when transferring a story 180 to a story enabled client 336 
(see also, step 232). 

For example, the opcodes representing computer program instructions and parameters may be 
40 placed in a first logical file, text and parameters in a second logical file, all motion video may be placed in 
a third logical file, all audio data may be placed in a fourth logical file, and the like. Alternatively, the 
computer program, control infonnation. audio data, motion video, and the like may be interspersed. In a 
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preferred embodiment, the elements which are best compressed using the same compression algorithms 
are combined together so as to adiieve a more optimal compression level. 

Notice that system 300 (see FIG. 1) cooperates in collecting all relevant infomiation and data 
first, such as for example, the capabilities, characteristics, and preferences described above, before 
generating a story 180 (step 230). This makes system 300, and in particular story 180 generation 
advantageously automated and dynamically adaptive. Having obtained all this information, system 300 - 
then generates the optimum story 180 after a connection has been made with recipient This is because 
only at the time of connection will story server 302 know for certain the particular characteristics of the 
recipienfs client device, communication channel, and user preferences. 

In some conventional systems, a user may register with a server characteristics of a registered 
deviceasiwell as registered user preferences. However, these conventional systems do not generally 
test or othenAHse take Into account the hardware capabilities of the device or network connectton 
characteristics used by the device to cornmunicate with the sender at that moment of time. 

The StoryMall system 300 (see FIG. 1) and procedure 210, on the other hand, take all such 
factors into account after connecting to a recipient's device to generate the optimal story 180 from a 
standpoint of story size, language, use or not use of audio or visual content, and the like. In a sense, the 
StoryMail procedure 210 Is contrary to other prevailing trends which attempts to pre-form content so that 
is available as eariy as possible in that StoryMail 300 actually delays composition of an e-mail message 
until these capabilities, characteristics and preferences are known. In this manner, a story 180 sent to 
any device will be experienced in a manner that is optimal for that device and user. 

Step 232 communicates a second StorylVIail message 200 to story enabled client 336. The 
second e-mail message 203 (see FIG, 5) includes that generated story (step 230) and the con*esponding 
story header 201 (see FIG. 5). In one embodiment, storyteller 172 encrypts generated story 180 (step 
230) so that it cannot be read by any inten^ening process after it is sent to story enabled client 336 and 
before it reaches its destination. In such an embodiment, if public key encryption is used, there is no 
need to have a central repository of public keys because the public keys of the center and receiver client 
can be exchanged after connection time when the story 180 is being generated (step 230). 

As discussed above in reference to step 230, each logical sub-file of story 160 includes, for 
example, a startup sequence of instructions that can be used to start the transfer of the following sub-files 
in the sequence. Such segmentation of the files Is beneficial for a number of reasons. For example, 
while transferring a story 180 to a story enabled client 336 (see FIG. 1), if the bandwidth is too small, a 
sub-file will not arrive in time. In one embodiment, story player 194 (see FIG. 5) pauses until each 
respective sub-file transfer is complete. In this manner, quality of story 180 presentation will be constant, 
even if receipt.of story 180 content is Intermittent. In yet another embodiment of the Invention, real-time 
transmission of story 180 Is not required so that the recipient may never be aware that transmission was 
delayed, suspended, or intermittent for a particular portion of story 1 80. 

Step 234 executes, or plays the story. Aspects of an exemplary procedure to play a story 180 are 
described in greater detail above in reference to FIG. 4. In the preferred embodiments of the invention, a 
custom story 180 is generated for each receiving device, such that a story 180 can be generated to play 
on all types of story enabled devices and compatibility is maintained for ail stories 180 even as story 
enabled devices may change or evolve. Even the rich media stories 180 will play on non-rich media 
enabled devices because, in preferred embodiments of the invention, there Is always some text or other 
simplified content behind more complex elements such as sound or video clips to fall back on. This is 
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because the master parts database 178 (see FIG. 4) includes Information to create new stories that will 
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play on all story players because there will always be the old instnjction altemative to fail back on. 
Likewise In at least some embodiments of the invention, even rich media stories are able to playback on 
conventional e-mail clients 340 having rudimentary e-mail applications because of the fall back text 
provided in the master parts database 1 78. 

As discussed in greater detail above in reference to FIG. 4. each logical element of a story 180 
includes, for example, associated semantic infonmation that respectively indicates a set of logical 
elements of story 180 that are to be displayed, or played on the recipients device. In one embodiment, 
such semantic infomnation also indicates when story player 194 should substitute an altemative logical 
element for another particular logical element. 

Step 236 tietemfiines whether Ihere is a response to the played story t80. Such a response 
can be provided, for example, by a user selecting a button control that the story 180 causes to be 
displayed. If there is such a response, step 238 generates a response to the story 180. For example, if 
the story is an e-coupon that promotes the purchase of a particular book, story player 194 (see FIG. 5) 
will create a structured format purchase order form, for example, an XML purchase order form. Such a 
fomi includes, for example, the customer ID, the product SKU (stocking number) that was included in 
story 180 (parsed from document 154 (see FIG. 2. FIG. 3, and FIG. 4), and any preferences. Such 
preferences include, for example, an indication of whether the book is to be received in electronic format 
instead of a physical format, the language that the book is to be written in, payment infomnation, and the 
like. 

Step 240 communicates the response (step 238) to the fulfillment server that was identified in 
the story 180 (parsed from document 154 (see FIGs. 2, 3, and 4). Such communication can be 
implemented by using a number of different protocols, for example, the HTTP protocols or SMTP 
protocols. 

The invention offers a number of strengths as compared to the closest competing technologies. 
A story 180 plays off line as well as online and is lightweight (thin) enough to run on inexpensive 
infonnation appliances or other devices. When so desired, a story includes, for example, user 
navigational aids, user forms, and can automate a transaction fulfillment process. A story is instantly 
interactive, self-contained and reliable. Creation of a story's 180 content can be completely automated, 
such that devices made today will be able to handle future content without upgrades. The invention 
facilitates publishing messages that are meaningful to individuals with physical disabilities and provides 
for intelligent content specific scaling and compression. A story 180 is easily stored and exchanged as a 
single file, and the same content runs in Web pages in its own window and on low-power device screens. 

EXEMPLARY SECURITY FEATURES AND EMBODIMENTS 

Embodiments of the invention are now described with reference to the figures. It will be 
understood that although the invention is described with respect to a particular StoryMail messaging and 
communication environment (See description in Related Applications and in the Appendix), the methods, 
systems, procedures, and computer programs and instructions while advantageously used in such 
environment are not so limited to the StoryMail messaging and communication environment 

Due to the many structural and methodological features described, various headings and 
subheadings have been provide to assist the reader of this specification. These headings and subheads 
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as listed below are merely a convenience device and are not to be Interpreted in any way as limiting or 
restricting the Invention in any way. Those workers having ordinary sicill in the art in light of the 
description provided here that the various aspects and elements of the invention are described 
throughout the specification and that an indication of a header or subheader merely indicates a particular 
5 focus on a feature of element of the invention or embodiment of the invention. 

The description of aspects of the inventive security features are conveniently described 
according to the following outline. It Is understood that where section headers are provided, such 
provision is merely for purposes of convenience to the reader, and that aspects of the Invention are 
described throughout the specification. 
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40 1.1 StoryMair'^ Message Tags 



A StoryMail Message Tag (MT) is assigned by the Story Sender and sent to the Client (either 
conventional e-mail client or story enabled client or device) in the e-mail header. This tag is used in the 
subsequent interactions between the Client and the Story Server and optionally with the Response 
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Automation system and optionally with the StoryMail Certificate Authority (SMCA). The security 
properties of the tag are: 

1. Message Tags (MTs) are globally unique. More precisely, it is statistically unlikely 
that two servers will ever produce the same message tag. 

5 2. MTs are specific to a given sen/er. Another server will very likely reject the tag 

created by one server. 

3. Valid MTs are chose sparsely from a large space, so the chance of guessing a valid 
Message Tag is very small. For the design given below, this chance is one in 2**48 

10 4. MTs include a bit field that can be chosen by the server software in any way that it 

likes. For example, this field could be a simple counter that starts at zero for all 
servers. This field is.48-bits in the design given below. 
5. The MTs are specific to a given recipient E-Mail address. The server is very likely to 
detect an attempt to fetch a story using an MT that was sent to a different user. 

15 6. The client software cannot distinguish valid from invalid MTs. There may be some 

benefit to adding a simple checksum character to the encoded MT. but this does not 
influence the basic algorithm. 
7. The algorithm can be scaled to produce different size MTs. 

The following paragraphs describe one preferred embodiment of the format of MTs, how the MTs are 
20 created and checked by the StoryMail Server. 

1 .1 .1 Format of Message IDs 

A Message ID (MID) is the unscrambled form of a Message Tag (MT). An MID contains a 
Redundancy Field, which could be 48-bits wide as shown below, and a Message Number, which could 
25 be 48-bits wide as shown below. The exact layout of the MID does not matter, though the diagram 
shows the Redundancy Field appearing to the left of the Message Number. The bits of these fields can 
be interspersed in any fixed way known to the StoryMail Server. 

The Redundancy Field (RF) allows the server to detect bogus MTs or MTs that were intended 
for a different user or server. In one possible embodiment it could be is computed as follows: 

30 RF = Left_48_Bits (SHA1 (ServerName || RedpientEmailAddress)) 

The ServerName is the domain name of the StoryMail server, or the name of the primary 
server when there is a collection of servers. It could be any unique character string, and it does not have 
to be kept secret. The RedpientEmailAddress is the ASCII representation of the redpienf s email 
35 address. The operator "|f means concatenation. The function SHA1 means a FIPS-180-1 SHA1 digest. 
The function Left_48_Bits truncates its argument to the left 48 bits. Actually, any 48 bits will do for this 
algorithm. 

Notice that when the client attempts to fetch the story, they will need to present proof that they 
hold the private key for a digrtal certificate that was issued to the RedpientEmailAddress. This proof 
40 shows that they are entitled to the story with the spedfied Tag value. 
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The RF could also be a function of a secret known only to the StoryMail Sen/er, or an indication 
of the date range when the MT was created, or other Information from the Client's digital certificate, or 
other infomiation sent by the Client before sending the Message Tag. 

The SHA1 digest function shown above can be replaced with any cryptographically secure 
compression or hash or digest function including but not limited to iVlD2, MD4. MD5, RIPE160, SHA-256. 
SHA-384, SHA-Sia. DES-CBC-MAC, 3DES-CBC-MAC, IDEA-CBC-MAC, AES-CBC-MAC. DES-MDC, 
and DES-MDC2. 



1.1.2 Creating of Message Tags 

The "following algorithm creates Message Tags from Message IDs. It is shown operating on 
12-byte (96-bit) values^ though it can be extended to operate on lengths from 9 to 16 bytes. We assume 
that some mechanism outside of the scope of this document, like Base-64 encoding, will translate the 96- 
bit binary MT into a printable string suitable for sending in an email message. 

This algorithm performs three block encryption algorithms using a secret key. called Kmt, 
chosen by the server during installation. If this key is compromised, then the attacker can create and 
decode Message Tags. This is not considered to be a big security risk. The current cryptographic 
architecture calls for using a 64-bil block cipher called XTEA, which has a 128-bit key. 

If the server needs to change the Kmt secret key, it will not be able to recognize MTs created 
by the old key. However, if the server wants to have a policy of changing the key periodically, they could 
keep a history of keys, and simply try each one to see if the MT unscrambles into a valid MID. If the 
server is willing to tiy three different keys, then chances of a random MT appearing valid will be three out 
of2**48(2^^). 

The steps for creating the MT from the MID are listed below. During installation the Kmt key is 
chosen. The following steps can be conveniently perfon^s using a single 12-byte buffer that is used as 
the input and output of the encryption function. The buffer starts with the 12-byte MID and ends up with 
the 12-byte MT. The algorithm operates on different eight-byte windows of the 12-byte buffer with xor 
operations used to link the windows. 

1. P1 = Left_64_bits (MID) . 

2. CI =Enc(Kmt, PI) 

3. P2left = Right_32_bits(C1) 

4. P'^right = Left_32_blts (CI) xor Right_32_bits (MID) 

5. P2 = P2lefl II P2right 

6. C2 = Enc (Kmt. P2) 

7. P3right = Right_32_bits (C2) 

8. MTright = Right_32„bits (C2) 

9. P3Ieft = Right_32_bits (C2) xor Lefl_32_bits (CI) 

10. P3right = Lefl_32_bits (C2) 

11. P3 = P3left II P3right 

12. MTIeft = Enc (Kmt, P3) 
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13. MT = MTIett||MTright 
These steps are illustrated In FIG. 10 which provides a diagrammatic illustration illustrating steps for 
creating an embodiment of a message tag from a message ID. 

1.1.3 Notes on Message Tag Algorithm 

The algorithm to create the message tag can be viewed as a modified Cipher Block Chaining 
(CBC) mode that first processes the data from left to right and then again from right to left. This two-pass 
approach guarantees that each output bit is dependent on each input bit. The plaintext blocks contain 
both overlap data and data xor*ed in from the previous blocks. If some of the bits of the MID were hard to 
predict, then it would be possible to g6t by with just two encryption operations, but given the small 
performance benefit, this strong three step algorithm is used because it is easy to argue that it is secure. 

1.1.4 Checking Message Tags 

jhe server checks the message tag when the client software attempts to fetch a story. When 
the client connected to the server via the lightweight SSL protocol, they will have sent their digital 
certificate, which includes their email address, and will have proven that they have current access to the 
private key that went with that certificate. The email address In the certificate becomes the 
RecipientEmailAddress that is used to compute the Redundancy Field in the MID. The steps are: 

1. Unscramble the Message Tag to recover the Message ID using the Kmt key to 
reverse the steps used to create the tag. 

2. Combine the server name and the RecipientEmailAddress from the client's certificate 

to create the Redundancy Field (RF). 

Check that the expected RF matches the one in the Message ID. 

1.2 Story Mail Compact Certificates 

Secure communications and message is established between the various components of the 
StoryMail system with the aid of digital certificates. For example, the Story Server and Story Enabled 
Client both have digital certificates that are used to establish a secure session between them to 
communicate Story Messages. The Story Senders each have a unique certificate, and the Clients can 
have either unique or shared certificates. If there client has a unique certificate, then strong security 
properties, such as client authentication based on access to a unique private key, are possible. 

Traditional digital certificates such as X.509 are large and often two certificates must be 
transmitted to enable both encryption and authentication. The StoryMail system includes an innovation 
that makes the certificates smaller and carry both the encryption and authentication keys, so the 
architecture is simpler and fewer round trip messages are required to establish strong security properties. 
The certificates have the following format 

• Type - 1 byte = SM-Certificate 

• Version - 1 byte = Zero (high 4 bits resen/ed as extra length bits) 
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• Content-Length - 2 bytes, MSB first = number of bytes in remaining content 

• Subject-Slgning-Key - 128 bytes, MSB first = RSA Public Key Modulus. 
The exponent is 3 when the Version field is zero. 

• Subjed-Enveloping-Key - 128 bytes, MSB first = RSA Public Key Modulus. 
The exponent Is 3 when the Version field is zero. 

• Tag - 4 bytes - Device number for certificate. Zero first device enrolled. MSB first. 

• Subject-Name-Length - 2 bytes. MSB first = length of following characters in bytes (i.e., 
Unicode characters count as 2 bytes if they are ever adding to this design). 

• Subject-Name - zero or more bytes, leftmost character first. 

• Issuer-Name-Length - 2 bytes, MSB first = length of following characters in bytes. 

• Issuer-Name - zero or more bytes, leftmost character first 

• Issuer-Signature - 128 bytes = signature from StoryMail CA on this certificate. The 
signature covers all the fields above this one, including the Type, Version and Content- 
Length. 

Notice that all the fixed length fields appear first, which improves the performance of certificate 
processing software. Also, notice that the certificate includes both the signing l<ey for authentication and 
the enveloping key for encryption. The format can be extended to include more than two public keys for 
the subject. 

Notice further, that the Type and Version fields encode all the infomiation that is carried in several 
different fields of a traditional X.509 certificate. It encodes, the selection of cryptographic algorithms for 
1) the keys belonging to the subject, and 2) for the signature produced by the issuer. These two fields 
also encode 1) the length of the keys belonging to the subject, 2) the exponents for the public keys, and 
3) the length of the signature block created by the issuer. 

1.3 StoryMail Common Protocol Elements 

The StoryMail protocols for secure sessions, secure one-way messaging, secure downloading, 
secure upgrading, secure enrollrnent and secure auditing, are all based on a small common set of 
cryptographic methods (also called primitives in this description) and common data formats used for 
sending information between and within StoryMail components (Server, Client, Response Automation. 
Certificate Authority, and the like). 

1.3.1 Format and Algorithms for EncryptedData Primitive 

The following encryption primitive provides privacy and tamper detection and is used for 

example in the LW SSL Data and Finish packets. This primitive can be expressed functionally as shown 
below. When used with the LW SSL protocol this primitive covers the entire record including the 4-byte 
header. That is. after the handshake ail the data in the TCP stream is protected by encryption and 
cryptographic checksums. The encryption can be viewed as existing in the layer between the TCP 
socket and the parsing of data records. 
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The primitive: SealEncryptedData (Key. CBC-Chain, Dala-To-Protect, Prolected-Data, Oiitput- 
CBC-Chain) performs the following steps: 

1 . Let Crypto-Checksum = HMAC (Key, Data-To-Protect). 

2. Let Plaintext = Data-To-Protect || Crypto-Checksum. 

5 3. Let Ciphertext = CBC-Pad-Encrypt (Key. CBC-Chaln. Plaintext). 

4. Set Protecled-Data = Ciphertext 

5. Set Output-CBC-Chain = Last 8 bytes of Ciphertext 

The primitive:UnSealEncryptedData(Key.CBC-Chain.Proteded-Data,Data-To-Protect.Output- 
1 0 CBC-ChaIn) performs the following steps: 

1 . Let Ciphertext = Protected-Data 

2. Let Data-To-Protecl || Crypto-Checksum =CBC-Pad-Decfypt (Key.CBC-Chain.Ciphertext) 

3. Let Actual-Checksum = HMAC (Key. Data-To-ProteCt). 

4. Enx>r if Actual-Checksum is not equal to Crypto-Checksum. 

15 5. Set Output-CBC-ChaIn = Last 8 bytes of Ciphertext. 

The CBC-Pad algorithms can be based on any block cipher, and is illustrated above for block ciphers 
that have 8-byte block sizes. Other block sizes, such as 16-bytes are implemented in a similar manner. 

The specific cipher used in the preferred embodiment is the XTEA 64-bit block cipher with a 
128-bit key mnning in CBC mode with PKCS #5 padding (i.e., one to eight pad bytes where each byte 
20 has the same value which is equals the number of padding bytes). The XTEA cipher has the advantage 
of requiring a very small size of software code to implement. Other ciphers such as tripIe-DES, DES. 
RC5, RC6, IDEA. Twofish. AES. could be used in other embodiments. 

1 .3.2 Format and Algorithms for SignedlnsideEnveloped Primitive 

25 The handshake records and the lightweight S/MIME protocol both use a security primitive that 

sends an encrypted and signed data block to a redpient using the recipienfs public key and senders 
private key to ensure the privacy and authenticity of the message. The same key pair Is used for signing 
and enveloping, so the recipient can send a secure message back to the sender. In these messages the 
sender always includes his certificate, though this could be removed if the send knows that the recipient 

30 already has it. 

The primitive can be expressed as a function as show immediately below. In one 
embodiment, the Data-Encryption-Key is the first 1 28-bits of the 1 60-bit OAEP-Seed. 



SealSignedlnsideEnveloped (Recipient-Public-Key, Sender-Private-Key.Sender-Certificate, Data- 
35 Encryption-Key, OAEP-Seed. Data-To-Seal. Protected-Data) 

This function performs the following steps. 

1. Let Envelope-Block = RSA-Publio-Encrypt-OAEP (Redplent-Public-Key, 
Data-Encryption-Key. OAEP-Seed) 
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2. Let Envelope-Recipient = SHA1 (Recipient-PublioKey) 

The Reclpient-Publio-Key is passed to SHA1 with the IVISB first. The exponent is assumed to be 3 
and it not passed to SHA1 . 

3. Let Digest = SHA1 (Data-To-Seal). 

5 4. Let Signature-Block = RSA-Private-Encrypt (Sender-Private-Key. Digest). 

5. Let Sender-Cert-Chain be an array of bytes where the first byte Is the number of certificates in 
the chain, and the remaining bytes are the concatenation of the certificates. Recall that certificates 
include length Infomriation, so the start of each certificate can be identified. 

6. Let Data-To-Protect = Sender-Cert-Chain || Signature-Block || Data-To-Seal. 
10 Notice that the length of the Data-To-Seal is implied by the length of the record that contains this 

primitive. 

7. Let CBC-Chain = 8 bytes of zero. 

8. Perform SealEncryptedData (Data-Encryption-Key, CBC-Chain. Data-To-Protect. Protected- 
Data, Output-CBC-Chain) 
15 9. Let Envelope-Body = Protected-Data. 

10. Discard Output-CBC-Chain. 

11. Protected-Data = Envelope-Recipient || Envelope-Block || Envelope-Body. 



Notice that the RSA-Private and RSA-Public operations could be replaced with any asymmetric 
20 encryption system such as Elliptic Curve or NTRU. Notice also, that the onjer of the fields within blocks 
of data can be changed without effecting the security of this primitive. For example, the Protected-Data 
field could have the Envelope-Body block appearing first Notice further, that the SHA1 function in step 2 
(Let Envetope-Redpient = SHA1 (Recipient-Public-Key)) above can be replaced with any cryptographic 
digest function such as MD2, MD4, MD5, RIPEMD, RIPEMD-160. MD6, SHA-256, SHA-384. or SHA- 
25 512, by adjusting the size of the related data fields according to the output size of the. digest function. 

Notice that the Data-Encryption-Key and the OAEP-Seed can be proper or improper subsets of each 
other. For example, the Data-Encryption-Key could be the first 128 bits of the OAEP-Seed, or the OAEP- 
Seed could be generated firom the Data-Encryption-Key by adding a fixed padding or by adding bits that 
are a simple function (such as bit-selection or rolllng-exclusive-or) of the Key. 

30 

1.4 StoryMail Secure Socket Layer 

The LW SSL protocol runs on top of a reliable bi-directional byte stream such as TCP. The byte 
stream is assumed to be insecure in the sense that bytes can be modified, recorded, replayed, inserted 
or deleted. The protocol turns this byte stream into a record stream by sending blocks of Information 
35 preceded by a header that identifies the type of the record and its length. Implementations of this 
protocol will want to organize the transmission of records to fall within a single IP packet that makes up 
the TCP byte stream. The protocol assumes that the byte stream will deliver any bytes that are sent so 
there is no need to handle retransmissions or acknowledgements at the LW SSL layer (these are done at 
the TCP layer). The protocol does however detect deleted data. If an application needs an 
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acknowledgement that some piece of data is received, it will do that at a higher layer (e.g.. the StoryMail 
reader expects to fetch a story and will keep trying until it gets the whole story). 

The protocol begins with a handshake phases that sends two records in each direction. The two 
records sent by the server can be combined into a singie TCP/IP packet, so the total overhead is three 
5 packets. These records can be used to setup a new master key (MK) for parties that have not 
communicated with each other recently, or reuse an existing MK that is cached to improve perfonmance 
(reducing computation overhead and communication bandwidth). At the end of this phase the parties will 
be mutually authenticate to each other. 

After the handshake phase, the parties send data records that carry higher layer infomnatton such 
10 as a story message. They close the session using the normal TCP close mechanism. Notice that this 
-means an attacker can close the TCP session as part of a denial of service attack. Sudh attacks are loo 
hard to prevent to be worth preventing at this time. 

Different keys are used by the client and server for sending data. This avoids possible replay 
attacks such as sending the client a message that ft had originally sent to the server in order to trick the 
1 5 client into thinking that the message came from the sen/er. The SSL protocol has this mechanism also. 

1.4.1 Data Maintained by Each Party 

The client and sen/er maintain the following information. 

• Client Long Term State 

20 o Client's own RSA Private and Public Key Pair 

o Digital Certificate with Client's Public Key 

This is issued by StoryMall's CA, and is verifiable with the StoryMail root public key. 
o . State of Pseudo Random Number Generator 

• Client Per-Server State 

25 o Table of Server-Name and Master-Key values 

The KID for the MK is the hash of the MK itself, so there is no need to store It 
separately. 

• Client Per-Sessk)n State 

o 128-bit Client-Write key 

30 o 64-bit CBC chain value for Client-Write 

o 1 28-bit Server-Write key 

o 64-bit CBC chain value for Server-Write 

o During session handshake the hash of Helb message that was senL 

• Server Long Term State 

35 o Server's own RSA Private and Public Key Pair 

o Digital Certificate with Server's Public Key 

This is issued by StoryMail's CA, and is verifiable with the StoryMail root public key. 



wo 02/10962 PCT/USOl/23713 

38 

o State of Pseudo Random Number Generator 

• Server Per-Client State 

o Cache Table of KID and Master Key values 

The KID for the MK Is the hash of the MK itself, but it is the index to this table, so it 
5 must be kept as a column. Rows can be deleted when they have not been used for 

some time or when space is needed. 

o Cache table of hash values for client certificates that have been validated. 

This table reduces the effort requlred to validate a client certificate. 

• Server Per-Session State 

.10 o 128-bit Client-Write key 

o 64-bit CBC chain value for Client-Write 

o 1 28-bH Server-Write key 

o 64-blt CBC chain value for Server-Write 

o During session handshake the hash of Hello and Accept message 

15 

1.4.2 Format of a Record 

In a prefened embodiment, all of the StoryMail data items that are transmitted (called records 
as they are called in the SSL specification) have the same header format show below. The header bytes 
are never encrypted, though they are included in cryptographic checksums. 

20 • Type - 1 byte 

• Version - 1 byte = 0 (high 4 bits reserved a? extra length bits) 

• Length - 2 bytes. MSB first = number of bytes in remaining content not including the four 
header bytes. If more than 65536 bytes are to be sent, then up to 4 bits of the version 
byte can be used to represent lengths up to 1 Mbyte. The preferred way to send a large 

25 data item is to place it in several smaller records. 

• Content bytes. 

1.4.3 Types of Records 

The Type byte of a record can have the following meanings. For the first release the version 
30 byte will be zero. 

• SM-Certificate = a certificate. 

• SM-Hello-New-lOlK = a new master key request. 

• SM-Accept-New-MK ~ response to new master key request. 

• SM-Hello-Reuse-MK = reuse master key requesL 

35 • SM-Accept-Reuse-MK = response to reuse master key request. 

• SM-Reject-New-MK = negative response to reuse master key request. 
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• SM-Client-Finish = last client handshake step. Authenticates client to server. 

• SM-Server-Finish = last server handshake step. Authenticates server to client. 

• SM-Client-Data = info sent from client to server. 

• SM-Server-Data = info sent from sen/er to client. 

5 

1 .4.4 Overview of New Master Key Setup 

The protocol for setting up a new master key assumes that the dient has the digital certificate 
for the server. It would get this through the email header information or request It via an unsecured 
request protocol (e.g., HTTP.getand response exchange). Ata fninimum ft needs to know the server's 
10 public key, and during the setup It will be given the server's certificate, which Is then verified to ensure 
that the server is a valid member of the StoryMail system. 

The exchange is based on a digital enveloping mechanism that Is shared with the lightweight 
S/MIME protocol. The steps are listed below. Notice that the client certificate is encrypted Inside a digital 
envelop that can only be opened by the server. This helps improve the privacy of communication since 
15 the sender's identity is not exposed at this layer, though of course some IP source address information 
will be exposed by the lower layers, but that IP address might belong to a firewall/proxy rather than to the 
sender. 

1. C->S: 
Hello-New-MK 

20 SealSignedlnsideEnveloped (Server-Public-Key» Client-Private-Key, Client-Certificate, 

Client-Message-Key, Client-Message-Key. Client-Nonce) 

2. S -> C: 
Accept-New-MK 

SealSignedlnsideEnveloped (Client-Public-Key, Server-Private-Key, Server- 
25 Certificate, Client-Message-Key, Client-Message-Key, Sender-Nonce) 

It is possible for the server to respond with a different certificate than the client used to in 
step 1 , but the sen/er name in the certificate must match the expected value. 

3. Both client and server compute the new Master Key (MK). 
MK = HMAC (Sen/er-Nonce || Client-Nonce, SHAI(Hello-New-K) |I SHA1(Accept-New- 

30 MK)). 

Notice that the entire records for the first two steps are feed into the HMAC. 
Client-Write Key = HMAC (MK, Client-Subject-Name) 
Sen/er-Write Key = HMAC (MK, Sen/er-Subject-Name) 

1. S -> C: Server-Finish 

35 Same format as Data message, with the contents being the 160-bit value 

SHA1 (Server None || Client-Nonce). This is encrypted with the Server-Write key, 
which is derived from the master key. Notice that this record can be sent together with 
the Accept-Reuse-MK record to avoid round-trip delays. 

2. C -> S: Client-Rnish 

40 Same fonnat as Data message, with the contents being the 160-bit value SHA1 (Client 
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None H Seiver-Nonce). This is encrypted with the Client-Write key. which is derived 
from master key. 

3. Both sides confimi that the Finish records have the expected contents, and then send 
data records. In fact, the first data record can be appended to the Finish record to be 
sent in the same TCP/iP packet 

Notice that an important innovation of this protocol is that the signed portion of the Accept- 
New-MK record does not include any value generated by the Client, so the Server can precomputed this 
value and avoid the perfonftiance penalty of performing an RSA private key operation to start each new 
MK session. In feet, the Server can reuse the same signed value with multiple Clients with little worry 
about weakening the resulting session keys. 

Notice that the Client-Message-Key is used as both the message key and the OAEP-Seed 
value in the embodiment shown above. Other embodiments could use a different value for the Client- 
Message-Key and the OAEP-Seed. 



1 .4.5 Overview of Reuse Master Key Setup 

The protocol for reusing the master key is tried whenever possible to avoid the computational 
overhead of RSA. The server will send a reject message if the MK is no longer cached or if it has been 
used for too long. The client responds to a reject by initiating the New MK protocol. 

1. C -> S: Hello-Reuse-MK 
Key-ID, Client-Nonce 

These value are both sent in the clear. 

2. S -> C: Accept-Reuse-MK 
Key-ID. Client-Nonce, Server-Nonce 
These values are sent in the clear. 

3. Both client and server compute the new keys from the Master Key (MK). 
Client-Write Key = HMAC (MK, 

SHA1 (Hello-Reuse-MK) || SHA1 (Accept-Reuse-MK)). 
Server-Write Key = HMAC (MK, 

SHA1 (Accept-Reuse-MK) |1 SHA1 (Hello-Reuse-MK)). 
The whole records from the first two steps are used to create the keys. This includes 
the 4-byte record headers. 

4. S -> C: Server-Finish 

Same iormaX as Data message, with the contents being the 160-bit value 
SHA1 (Server None || Client-Nonce). This is encrypted with the Server-Write key, 
which is derived from the master key. Notice that this record can be sent together 
with the Accept-Reuse-MK record to avoid round-trip delays. 

5. C -> S: Client-Finish 

Same fbmnat as Data message, with the contents being the 160-bit value SHA1 (Client 
None II Server-Nonce). This is encrypted with the Client-Write key, which is derived 
from master key. 
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6. Both sides confirm that the Finish records have the expected contents, and then send 
Data records. In fact, the first data record can be appended to the Finish record to be 
sent In the same TCP/IP packet 

Notice that the SHA1 cryptographic digest show in the embodiment above can be replaced with any 
5 other cryptographically strong digest function such as MD5, RIPEMD-160. SHA-256. and the like. 



1.4.6 Format and Algorithms for Hello-Reuse-MK Record 

This Hello-Reuse-MK Record record has a standard header followed by two foced length fields. 
All the Reuse-MK records have a very similar fbnnats. This reduce the amount of code needed to 
10 'implementationthem. 

• Type - 1 byte. 

• Version - 1 byte = 0. • 

• Length -r 2 bytes, MSB first = number of bytes in remaining content. 

• Key-ID - 20 bytes = SHA1 (MK). 

15 • Client-Nonce - 20 bytes = Output of pseudo random number generator. 

1 .4.7 Format and Algorithms for Accept-Reuse-MK Record 

This Accept-Reuse-MK Record record has a standard header followed by three fixed length 
fields. The Client-Nonce is included to make replay attacks that use TCP stream insertion techniques 
20 harder to perform. 

• Type- 1 byte. 

• Version - 1 byte = 0. 

• Length - 2 bytes, MSB first = number of bytes in remaining content. 

• Key-ID - 20 bytes = SHA1 (MK). 

25 • Client-Nonce -20 bytes Copied from Hello message. 

• Server-Nonce - 20 bytes = Output of pseudo random number generator, or hardware 
random number generator. 



1.4.8 Format and Algorithms for Reject-Reuse-MK Record 

30 This Reject-Reuse-MK Record record has a standard header foIk>wed by two fixed length 

fields. The Client-Nonce Is included to make denial of service attacks that use TCP stream insertion 
techniques harder to perform. The client should respond to this record by attempting a Hello-New-MK 
handshake. 

• Type - 1 byte. 

35 • Version - 1 byte = 0. 

• Length - 2 bytes. MSB first = number of bytes in remaining content. 
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• Key-ID - 20 bytes = SHA1 (MK). 

• Client-Nonce - 20 bytes = Copied from Hello message. 



1.4.9 Format and Algorithms for Hello-New-MK Record 

5 The Hello-New-MK record has the standard header followed by a nonce that Is wrapped up for 

the Server. It includes the client* s certificate, so the server does not need a database of client 
certificates. The server checks the signature on the client certificate, or checks that the hash of the 
certificate is in its database of previously validated certificates. See the section on cryptographic 
primitives for the data produced by SignedlnsideEnveloped. 

10 • Type -1 byte. 

• Version - 1 byte = 0. 

• Length - 2 bytes. MSB first = number of bytes in remaining content 

• SignedlnsideEnveloped (Server-Publio-Key, Client-Private-Key. Client-Certificate, 
Message-Key, Client-Nonce). 

15 The Client-Nonce and Message-Key come from the client's pseudo random number generator, 

the Server-Public-Key comes from the Email header, the Client-Private-Key and Client-Certificate comes 
from the client's protected storage. 

1 .4.1 0 Format and Algorithms for Accept-New-MK Record 

20 The Accept-New-MK record has the standard header followed by a nonce that is wrapped up 

for the Client. It includes the server's certificate since the client may only have the server's public key. 
The client verifies the certificate to ensure that it is speaking to an authorized sen/er. See the section on 
cryptographic primitives for the data produced by SignedlnsideEnveloped. 

• Type - 1 byte. 

25 • Version - 1 byte = 0. 

• Length - 2 bytes, MSB first = number of bytes In remaining content. 

• SignedlnsideEnveloped (Client-Public-Key, Server-Private-Key, Server-Certificate. 
Message-Key. Server-Nonce). 

The Server-Nonce and Message-Key come from the sender's pseudo random number generator, the 
30 Cllent-Publio-Key comes from the Client-Certificate received in the Hello-New-MK message. The Sen/er- 
Private-Key and Client-Certificate comes from the server's protected storage. 

The Client-Nonce is not included in this record to allow the server to reduce the number of 
private key operations that It must perfonm. The sen/er can send the same signed Sender-Nonce to 
multiple clients as long as they all have different Client-Nonce values, thus it does not need to do a 
35 private key operation to create each Accept-New-MK message, just a public key operation to sent it to 
the client. However, the sender does need to perform a private key operation to Unseal the Hello-New- 
MK message. 
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10 



15 



20 



25 



30 



Since the Client-Nonce in not included in the Accept-New-MK record, an attacker could replay 



when It validates the Server-Finish record. Only a cun-ent Accept-New-MK record will produce the 
correct validation for the Server-Finish, since it requires knowledge of the new Client-Nonce as well as 
the possibly replayed Sen/er-Nonce. An old Server-Finish record will not validate. 

1 .4.1 1 Format and Algorithms for Client-Finish Record 

This record appears Inside the EncryptedData primitive. The first block of encryption must be 
stripped off to find the 4-byte record header in order to find the length of the record contents. See the 
section on cryptographicprimitiy.es.for . details. For. the Finish. records, the CBC-Ghain is zero. 

• EncryptedData (Client-Write-Key. Data-To-Protect)where Data-To-Protect is the following: 
o Type - 1 byte. 

o Version - 1 byte = 0. 

o Length - 2 bytes, MSB first = number of bytes in remaining content, 
o SHAl (Client-Nonce || Sen/er-Nonce)). 

1.4.12 Format and Algorithms for Server-Finish Record 

This Sen/er-Finish Record record is similar to Client-Finish. 

• EncryptedData (Server-Write-Key, Data-To-Proted) 
where Data-To-Protect is the following: 

o Type - 1 byte. 

o Version - 1 byte = 0. 

o Length - 2 bytes. MSB first = number of bytes in remaining content, 

o SHAl (Server-Nonce || Client-Nonce)). 

1.4.13 Format and Algorithms for Client-Data Record 

This record appears inside the EncryptedData primitive. The first block of encryption must be 
stripped off to find the 4-byte record header in order to find the length of the record contents. See the 
section on cryptographic primitives for details. For the first Data record, the CBC-Chain value comes 
from the last ciphertext block of the encrypted Finish record. Subsequent CBC-Chain values come from 
the last ciphertext block of the previous Data record. 

• EncryptedData (Client-^Write-Key, Data-To-Protect) 



an old message and the client will not immediately detect the replay. The client will discover the replay 



where Data-To-Protect is the following: 



o 



Type - 1 byte. 



o 



Version - 1 byte = 0. 



o 



Length - 2 bytes. MSB first = number of bytes in remaining content. 
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o Data-To-Send. 



1.4.14 Format and Algorithms for Server-Data Record 

This Server-Data Record record is simitar to the Client>Data record. 

5 • EncryptedData (Server-Wrlte-Key, Data-To-Protect) 

where Data-To-Protect is the following: 

o Type - 1 byte. 

o Version - 1 byte = 0. 

o Length - 2 t>ytes, MSB'first - number of tytesin remaining content. 

10 o Data-To-Send. 

1.5 StoryMail Secure Certificate Issuing 

The primary features of this enrollment and certificate issuing process are: 

1 . The enrollment can take place automatically without any user interaction. 
15 2. For baseline security it is not necessary to Issue individual certificates to the clients. 

The SSSL protocol will ensure privacy, integrity, and server-side authentication even if 
all clients share the same private keys that are built into the Reader program. 
3. The enrolling device receives a digital certificate that is specific to the user^s email 
address. 

20 4, The certificate is issued by a global StoryMail Certificate Authority (SMCA). There 

may be half a dozen of these in the worid and they maintain a loosely synchronized 
database. 

5. As explained in [SSSL] the digital certificate Is in a proprietary fonnat (not X.509) and 
it includes both a public key from signing and a public key for enveloping (encrypting) 

25 data. 

6. The key-pairs are generated by the SMCA using a strong random number generator 
and the private keys are forgotten. This documents includes notes on a future feature 
that would allow client devices to generate their own private keys. 

It is possible to embody this invention without having an SMCA issuing certificates, so the Story 
30 Enabled Client softvi/are will not have key-pairs and certificates that are specific to each given email 
address. The LW SSL protocol ensures privacy, integrity, and sen/er-side authentication even if an 
attacker knows the private key of the client. The attacker must knpw the private key for both the client 
and the server to be able to compute the session key. In this case, the server's private key is not known. 
The Reader programs can all share the same private keys and use self-signed certificates that include 
35 each client's email address. 



1.5.1 Overview of Design 



Every StoryMail SMTP message includes an invitation to download a StoryMail reader so the 
user can see the Story content as its author intended. If the device already has a reader, then 
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information in the header of the SMTP message will be processed by the reader and the SMTP message 
will be replaced with the Story that is fetched from a StoryMail server via the SSSL protocol. Thus, only 
users who do not have the Reader see the body of the SMTP message. Somewhere in that message 
body will be a URL that the user can click on to download the reader and play the Story. 
5 When the user clicks on the download URL, their browser will launch and eventually the 

desired Story will play. This document describes the security relevant actions that take place between 
clicking the URL and the playing the first Story. 

The download proceeds in two phases. The first phase uses the browser's own security 
mechanisms to fetch a Loader program, and during the .second phase, the Loader uses StoryMail 

10 protocols to securely fetch the StoryMail Reader and perfomi the enrollment protocol to get a digital 
• certificate andlsey-pairs from the StoryMail -Certificate Authority <SMCA). 

During the first phase, this design assumes that data transfenred has good enough integrity and 
authenticity for the user, but that an attacker will be able to record all of this data for later analysis or 
replay. For example, the browser may be able to perform strong authentication of the source of 

15 Information using SSL, biit the SSL encryption used by the browser may be weak enough for the attacker 
to easily break (e.g., 40-blt keys). It might even happen that no SSL capability is present, but the user 
trusts the address resolution process of the Internet to navigate to the correct host when data Is 
downloaded. In this case, the data is not encrypted. Basically, the user assumes that the attacker is not 
able to actively intercept and modify downloaded data. 

20 The result of the first phase is that a small Loader program begins to run on the client device. 

Based on infonmation sent to the server during the HTTPS or HTTP GET request generated by clicking 
the download URL. the server will send an Internet Explorer (IE) ActiveX control or a Netscape plug-in. 

The Loader comes from the StoryMail server that sent the SMTP message to the user, and it • 
will include information that came from the download URL. That URL includes: 
25 1 . The name of the StoryMail server. 

2. The client email address. 

3. The message tag (see [Mtag]). 

The StoryMail server can verify that the message tag and client email address match using an algorithm 
described in [Mtag] that is based on a server specific secret key. This means that the attackers cannot 
30 forge new download URLs, they can only replay ones that have been recorded from the SMTP messages 
or Loader requests. 

The StoryMail server nrwKlifies the Loader program for each download request by including a 
the client's email address, which will be used when requesting a digital certificate, or for baseline security 
(before the SMCA exists) this address will be placed in a self-signed certificate. The Loader also 

35 includes the URL for the regional SMCA. 

During the second phase, this design assumes that the Loader program will be able to create a 
private, encrypted, tamperproof and server-authenticated data pipe between the client device and the 
SMCA. The Loader uses the SSSL protocol to achieve this security. The Loader is configured to use 
fixed private keys, which the attacker can know without compromising the security properties of this 

40 protocol. The certificate in the Loader which goes with these keys indicates that they are Loader keys, 
and thus they do not uniquely identity an email address, and the matching private keys may be known to 
the attacker. 
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The Loader connects to the SMCA using a compiled in URL and the SSSL protocol with the 
compiled in certificate and private keys. The SSSL implementation will generate a random pre-master 
key value that is sent to the SMCA encrypted with the SMCA*s public key (which is also compiled into the 
Loader). Notice that an attacker would need to know the SMCA*s private key to recover this value. The 
5 SMCA sends back a different random pre-master key value encrypted with the Loader's public key and 
signed by the server's private key. An attacker will be able to recover this value, since the Loader's 
private key is known, but the attacker cannot create these values, only replay them, hlowever, the 
session master key is a cryptographic function of both random pre-master key values, so the attacker will 
not be able to compute it, and therefore will not be able to read the subsequent traffic. 

10 The Loader then requests the connect Reader program for the client platform, and if the SMCA 

is issuing client specific certificates* the Loader .(or Reader) requests a certificate for .the .client. The 
request includes the client's email address which Is put in the certificate. The SMCA generates the key- 
pairs for singing and encrypting data. The public keys go Into the certificate, and the private keys are 
passed to the Loader along with the certificate. The SMCA deletes the private keys after they has been 

1 5 sent to the Loader. 

1.5.2 Data Maintained by the SMCA 

There are a small number SMCA sites (which could be server farms) that maintain a common 
database. The entries in this database are updated between the SMCA sites using some protocol that Is 
20 beyond the scope of this document. The security of this system does not rely on tight coupling tjetween 
the databases on different SMCA sites. This design assumes that the sites are synchronized at least 
once per day. 

The following data is maintained by the SMCA sties. 

1 . For each email address: 

25 a. Security flags set by the user. 

b. Number of certificates issued with this address. 

2. For each pairing of email address and certificate number: 

a. Date, time, and other context infbnmation. 

b. Platform infbnnation for device that requested this certificate. 
30 This could include CPU. OS and Network-Bandwidth information. 

c. Flag indicating whether this certificate is revoked.. 

d. Actual certificate, and optionally parsed-out values for: 

i. FormatA/ersion number. 

ii. Signing Public Key. 
35 ill. Encrypting Public Key. 

iv. Certificate tag number (32-bit value) 

3. For each SHA1 digest of a certificate: 

a. Cross reference to certificate table above. 
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1.5.3 Reader Download Request and Response 

The format of the messages sent between the Loader and the SMCA to dovmload the 
appropriate Reader program for the client platform is beyond the scope of this document. The security 
relevant consideration is that this download must take place over a channel secured by SSSL. 

1.5.4 Certificate Request and Response 

The certificate request is separate from the Reader download request. This protocol could be 
.executed by the Loader, or later -by . the-Reader. -However. it does require that the requester know the 
client* s email address. 

This protocol uses a record structure (like the one used by the SSSL protocol) to send the 
request and the response, though these records are transported as ordinary Data records of the SSSL 
protocol. The request includes the email address of the client. The first part of the response will be the 
private keys. The second part of the response will be a certificate chain that starts with the user 
certificate and chains up to and including the StoryMall root certificate. Other versions of this protocol 
have the client generating the key-pairs, so the request will include the public keys and the response will 
not include the private keys. The format of the Certificate Request is shown below. In the first release, 
the public key lengths and exponents are zero since the SMCA is generating the key-pairs. 

• Type - 1 byte = SM-Certificate-Request 

• Version - 1 byte = Zero 

• Content-Length - 2 bytes. MSB first - number of bytes In remaining content 

• Email-Address-Length - 2 bytes. MSB first = length of following characters in bytes. 

• Email-Address - Zero or more bytes = Client Email Address. 

• Signing-Public-Key-Exponent - 2 bytes. MSB first. 

• Signing-Public-Key-Length - 2 bytes, MSB first = length of following field in bytes. 

• Signing-Public-Key - n bytes. MSB first = Modulus. 

• Enveloping-Public-Key-Exponent- 2 bytes, MSB first. 

• Enveloping-Publio-Key-Length - n bytes, MSB first = length of following field in bytes. 

• Enveloping-Public-Key - n bytes. MSB first = Modulus. 

The format of the Certificate Response is shown below. In another prefen'ed embodiment, the private 
key length and exponent fields will be zero if the client chooses the key-pairs itself and simpjy sends the 
public keys In the request message. 

• Type - 1 byte = SM-Certificate-Response 

• Version - 1 byte = Zero 

• Content-Length - 2 bytes, MSB first = number of bytes in remaining content 

• Signing-Private-Key-Exponent - 2 bytes, MSB first. 



wo 02/1 0962 PCTAJSOl/2371 3 

48 

• SIgning-Private-Key-Length - 2 bytes. MSB first = length of following field in bytes. 

• Signing-Private-Key - tbd bytes. MSB first = all the parts of the private key in an order to 
be detemiined (e.g., P. Q. and CRT parameters). 

• Enveloping-Private-Key-Exponent - 2 bytes. MSB first. 

• Enveloplng-Private-Key-Length- 2 bytes, MSB first = length of following field in bytes. 

• Enveloping-Private-Key - tbd bytes. MSB first = all the parts of the private key in an order 
to be detemiined (e.g., P. Q. and CRT parameters). 

• Cert-Chain - n bytes = an array of bytes where the first byte is the number of certificates in 
the chain, and the remaining bytes are the concatenation of the certificates. Recall that 
certificates include length information, so the start of each certificate can be identified. 
The clients certificate will be the first one in the chain. 

The Loader will put the received key-pairs and certificates in a place that can be located by the Reader 
program. When the Reader program is first launched, it should validate that the public keys in the 
certificate match the private keys. 

1.5.5 Client Generated Key-Pairs 

In another preferred embodiment, the client could download a special program that generates 
key-pairs and performs the certificate request process. If the certificate request requires a message tag. 
then requesting a certificate would have to be integrated with the mail filter software that sees the 
message tags. If only the Email Address is required, this can run separately, though there would need to 
be some mechanism that proves that the requester has current access to an Address. 

The key generation program could be downloaded separately from the SMCA site by clicking 
on URLs that are part of documentation or online help pages. 

The key generation software wilt need to be audited by an independent cryptography consultant to 
convince security conscious users that it is secure. 

One class of users that are extremely concerned with security will want to use their own 
software to generate private keys. To cater to them, the software could have an option of reading a 
PKCS #12 file that has been exported by browsers ft-om Netscape or Microsoft, or other PKI software. 

An other class or security conscious users will want the StoryMail Reader to access private keys 
stored on a physical or virtual smart card. This type of security feature may also be provided. 

1.6 StoryMail Secure Response Session 

As part of playing a Story message, the Story Enabled Client can establish a secure Response 
Session between the client machine and a Response Server machine using the Secure Response 
Protocol. For example, the an advertisement message could include a button that the user presses to 
connect to the a merchant server that is acting as the Response Server or to a sen/er that is shared 
among two or more merchants called the Response Automafion Server to send and receive further 
information. The case of sending a unidirectional response message is described below. This section is 
describing the establishment of a secure bi-directional link. 



wo 02/10962 



PCT/US01/237J3 



49 



1.6.1 Overview of Secure Response Session 

A valuable feature of the Secure Response Session protocol is that it Is nearly identical to the 
LW SSL protocol. The difference Is that the URL of the Response Server and the public key for the 
5 Response. Senrer are both embedded In the Story message, Instead of, for example, appearing in the 
regular e-mail header as it does vnth LW SSL. 

1.6.2 Steps to Step Up Secure Response Session 

In.one embodiment, -the^Gure Response Session Is set up by the following-steps: 
10 Extract the URL of the Response Server and public key of the Response Sender from the 

currently playing Story message. 

a. These two values can appear separately in the Story message. 

b. One or both of these two values can appear inside a Compact Certificate that 
appears in the Story. In this case, the digital signature on the certificate is 

1 5 verified to confirm that this is an authorized certificate. 

c. Additional security checks may optionally be performed on these two values, 
such as checking that the URL of the Response Server matches part of a 
URL that appears elsewhere In the story such as the Identity of the author of 
this story. 

20 2. Check for a cached Master-Key related to the Response Server's URL. 

a. If a Master-Key is found, perfomn the LW SSL protocol starting with a Hello- 

Reuse-MK record. 

b. If a Master-Key is not found, perform the LW SSL protocol starting with a 
Hello-New-MK record. . 

25 Notice that even if the client does not have a unique certificate, the Response Server can authenticate 
the Client using unique information, which could be the Message Tag, that was placed in the Story sent 
to the Client. 



1.7 StoryMail Secure Unidirectional iUlessage 

30 This protocol can be used when a Story Enabled Client wants to send a Secure Unidirectional 

Message to a Response Server. This might be initiated by the Client in response to the user clicking on 
some active area of the Story display or other user interface action. For example, an advertisement 
message could include a "buy-it" button ttiat the user will click on to initiate a purchase transaction witii 
the Response Server operating on behalf of the merchant offering the advertised good or sen/Ice. 

35 This protocol can also be used to send secure unidirectional messages between any two Story 

Enabled Clients or from Servers to Clients. 
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1 .7.1 Overview of Secure Unidirectional Message 

Outside of the scope of the protocol the Sender of the message receives the Compact 
Certificate for the Recipient of the message. For example, a Story message played by a Story Enabled 
5 Client might include the Compact Certificate for the Recipient as part of the data associated with an 
active region of the display or other user interface component. 

The Sender gathers together the data It wants to send and then creates a record using the 
common SealSignedlnsideEnveloped cryptographic primitive. The Type field identifies the purpose of 
this record and the fomiat field identifies its structure. The Recipient can use the common 
10 UnsealSignedlnsideEnveloped cryptographic primitive to extract the data and verify the authenticity of its 
source. 

Notice that If the Sender does not have a unique Compact Certificate, the authenticity of the 
Sender can be attested to by the presence of a data value that was uniquely sent to the Sender^ such as 
a Message Tag or other token or cookie that was created with the story or exists on the Sender's 
15 machine (e.g., Microsoft Global Unique ID. Product ID, CPU ID, or Story Reader Registration ID). 



1.7.2 Steps in Secure Unidirectional Message Protocol 

In accordance with one embodiment, the steps in sending a Secure Unidirectional Message 

are: 

20 1. Extract the URL of the Response Server and public key of the Response Server from 

the currently playing Story message, or from a repository of values like an address 
book. 

a. These two values can appear separately in the message or repository. 

b. One or both of these two values can appear inside a Compact Certificate that 
25 appears in the Story. In this case, the digital signature on the certificate is 

verified to confimn that this is an authorized certificate. 

c. Additional security checks may optionally be performed on these two values, 
such as checking that the URL of the Response Server matches part of a 
URL that appears elsewhere in the message such as the Identity of the 

30 author of this story. 

2. Use the common cryptographic primitive, SealSignedlnsideEnveloped to 
produce a message body record and add appropriate Type and Format fields 
to indicate the purpose and format of the record. 

3. Tran^smit record to the Recipient using infonmation derived from the 
35 Recipient's URL extracted earlier. 

The step in receiving a Secure Unidirectional Message are: 

1 . Receive the message body record from the Sender. 

2. Check the Type and Format fields to confirm that this message has an acceptable 
purpose and format for the Recipient. 
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3. Use the common cryptographic primitive, UnsealSignedlnsideEnveloped to extract the 
data in the message and to verify the authenticity of the Sender and the integrity of 
the message (to confirm that it was not modified in transit). 

4. Optionally examine the extracted Data to confirm that an acceptable message tag or 
5 other client unique Identifier Is contained in the message, and that Its value Is 

appropriate given the Type and Format fields and other fields in the Data. 

Notice that this protocol reuses the same cryptographic primitives and data structures as the other 
protocols. Notice also, that either or both of the Sender and Redplent can have non-unique Compact 
Certificates, though the security properties available in those cases are less strong than if both parties 
10 have unique certificates. 

1.8 Further Description of Selected System, Method, Protocol, Computer 
Program, Methodological and Procedural Embodiments 

Having described various aspects and structures of StoryMail Message Tags, StoryMail Compact 
15 Certificates, StoryMail Common Protocol Elements, StoryMail Secure Socket Layer, StoryMail Secure 
Certificate Issuing, StoryMail. Secure Response Session, and StoryMail Secure Unidirectional Messaging, 
attention is now focused on the description of various methods and procedures that provide or contribute 
to secure communication or messaging under various operational scenarios. These illustrative methods 
and procedure are described by way of illustration and not by limitation. 

20 It will also be understood that these methods may advantageously be implemented as sets of 

instructions, with appropriate data or parameters where appropriate, on either general purpose or 
specialized computers or other information appliances. In general, such computers will have a 
processor, microprocessor, or CPU with a coupled memory. The instructions are stored in the memory 
and executed by the processor. Such computers or information appliances will also typically include a 

25 connection to a networks, such as the Internet. Frequently, the messaging or other secure 
communication will take place between two (or more) such computers or information appliances over the 
Intemet. 



1.8.1 Embodiment of Method for Secure Communications and Messaging 

30 In a one aspect, the invention provides a hardware architecture neutral and operating system 

neutral and network transport neutral method for secure messaging and communications. In one 
embodiment this method includes the following procedures and steps with options or variations. 

An authorization procedure is provided for authorizing any particular user the right to access a specific 
resource. A digital certificate procedure is provided that enables at least encryption and digital signatures 

35 having lower storage and bandwidth requirements than conventional digital certificates. A security 
protocol implementation procedure for implementing two or more security protocols using a common set 
of data formats, algorithms, subroutines, and procedures. A secure session Interaction procedure having 
reduced soflware/tirmware computer code/instructions and reduced network bandwidth than conventional 
secure session interaction prbcedures. A unidirectional messaging procedure using less 

40 software/firmware code and reduced network bandwidth than conventional unidirectional messaging 
procedures. A secure certificate issuing procedure using less software/fimrware code and reduced 
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network bandwidth than conventional secure certificate issuing procedures. A secure response 
procedure using less software/finnware code and reduced network bandwidth than conventional secure 
response procedures. A secure unidirectional response messaging procedure using less 
soflwaiB/firmwarB code and reduced network bandwidth than conventional secure unidirectional 
5 messaging procedures. 

While embodiments of the Inventive system, method, and computer program may Include all of 
the procedures desaibed above and elsewhere in this specification, it is understood that many of the 
component procedures are optional and are not required in all implementations or embodiments of the 
systems, methods, computer programs, computer program products of the invention, or not required for 

1 0 particular messaging or communication schemes or situations within a system or method. 

Altiiough-aspects of the invention are YJescribed-throughout the specification and drawings, 
certain selected aspects and embodiments and/or combinations of features are now highlighted. In a first 
aspect, the invention provides a hardware architecture neutral and operating system neutral and network 
transport neutral method for communicating or messaging. Embodiments are conveniently referenced 

15 and listed using a number sun-ounded by parenthesis for convenient reference. 

(1) A hardware architecture, operating system, and network transport neutral metiiod secure 
communications, the method comprising: an authorization procedure for authorizing any particular user 
the right to access a specific resource; a digital certificate procedure that enables at least encryption and 
digital signatures having lower storage and bandwidth requirements than conventional digital certificates; 

20 a security protocol implementation procedure for implementing two or more security protocols using a 
common set of data formats, algorithms, subroutines, and procedures; a secure session interaction 
procedure having reduced software/firmware computer code/instructions and reduced network bandwldtti 
than conventional secure session interaction procedures; a secure unidirectional messaging procedure 
using less software/firmware code and reduced network bandwidth than conventional unidirectional 

25 messaging procedures; a secure certificate issuing procedure using less software/finnware code and 
reduced network bandwidth than conventional secure certificate issuing procedures; a secure response 
session procedure using less software/firmware code and reduced network bandwidth than conventional 
secure response procedures; and a secure unidirectional response messaging procedure using less 
software/firmware code and reduced network bandwidth than conventional secure unidirectional 

30 messaging procedures. 

(2) A system for secure communications comprising: an authorization module for authorizing 
any particular user the right to access a specific resource; a digital certificate encryption module that 
enables at least encryption and digital signatures having lower storage and bandwidth requirements than 
conventional digital certificates; a security protocol module for implementing two or more security 

35 protocols using a common set of data formats, algorithms, subroutines, and procedures; a secure 
session interaction module having reduced software/firmware computer code/instructions and reduced 
network bandwidth than conventk)nal secure session Interaction procedures; a secure unidirectional 
messaging module using less software/firmware code and reduced network bandwidth than conventional 
unidirectional messaging procedures; a secure certificate issuing module using less software/firmware 

40 code and reduced network bandwidUi than conventional secure certificate Issuing procedures; a secure 
response session module using less software/finnware code and reduced network bandwidth than 
conventional secure response procedures; and a secure unidirectional response messaging module 
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using less software/firniware code and reduced network bandwidth tlian conventional secure 
unidirectional messaging procedures. 

(3) A computer program product for use in conjunction with a computer system having a server 
and a client, the computer program product comprising a computer readable storage medium and a 

5 computer program mechanism embedded therein, the computer program mechanism, comprising: a 
program module that directs the computer system and/or components thereof Including at least one or 
the client or server, to function in a specified manner to provide message communications, the message 
communications occuning in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for secure communications, the program module 

10 including instructions for an authorization procedure for authorizing any particular user the right to 
access a specific resource; a digital .cei1ificate.procedure.that.enables.at.least encryption and digital 
signatures having lower storage and bandwidth requirements than conventional digital certificates; a 
security protocol implementation procedure for Implementing two or more security protocols using a 
common set of data formats, algorithms, subroutines, and procedures; a secure session Interaction 

1 5 procedure having reduced software/fimnware computer code/instructions and reduced network bandwidth 
than conventional secure session interaction procedures; a secure unidirectional messaging procedure 
using less software/firmware code and reduced network bandwidth than conventional unidirectional 
messaging procedures; a secure certificate issuing procedure using less software/firmware code and 
reduced network bandwidth than conventional secure certificate issuing procedures; a secure response 

20 session procedure using less software/firmware code and reduced network bandwidth than conventional 
secure response procedures; and a secure unidirectional response messaging procedure using less 
software/fimnware code and reduced network bandwidth than conventional secure unidirectional 
messaging procedures. 

(4) A hardware architecture, operating system, and network transport neutral method secure 
25 communications, the method comprising: an authorization procedure for authorizing any particular user 

the right to access a resource; a digital certification procedure for encryption and digital signing; a 
• security protocol procedure for implementing a plurality of security protocols using a single common set 
of policies and parameters; a secure session interaction procedure; a secure unidirectional messaging 
procedure; a secure certificate issuing procedure; a secure response session procedure; and a secure 
30 unidirectional response messaging procedure; the procedures using less software/firmware/computer 
code and reduced network bandwidth than conventional procedures to accomplish analogous 
functionality. 



1.8.2 Embodiment of Method for Authorization of Access to Resource 

35 In a second aspect, the invention provides a hardware architecture neutral and operating 

system neutral and network transport neutral method for authorizing a sipecific user the right to access a 
specific resource such as an e-mail message or a promotional coupon. In one embodiment this method 
Includes the following steps and options or variations. 

A Resource Owner sends to the Specified User a Resource Tag (e.g., Message Tag or Coupon Tag), 
40 where the Resource Tag is the result of a reversible cryptographic transformation of a Redundancy Field 
and Resource Identifier Field (e.g.. Message Number) and optionally other information. The Resource 
Tag may be sent by regular e-mail. Story Enabled e-mail, by display on a web page, or by hardcopy or 
other media. The cryptographic transformation of the fields of a Resource Tag can be based on one or 
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more secret keys known to the Resource Owner using series of block encryption steps on portions of the 
fields in a manner that allows the transformation to be reverse by an entity that knows the one or more 
secret keys. 

For a 9 to 16 byte Resource Tag, the cryptographic transformation can be performed by three 
5 or more applications of 8-byte block encryption using a cipher such as triple-DES or XTEA or RC6, 
where a portion of the output bits from each block encryption are xor*ed with a portion of the input bits to 
the next block encryption. 

For a Resource Tag of any length, the cryptographic transfonmation can be performed by a 
block cipher operating in Cipher-Block-Chaining mode with an initialization vector of zero or some fixed 
10 value that is applied in two passes, first from left to right across the bytes of the fields and then from 
right to lefl across those resulting bytes, with the end result being that each Resource Tag bit depends 
strongly on each bit of the input fields, and only an entity who knows the one or more keys can reverse 
this transformation. 

The Redundancy Field can be a cryptographic hash (e.g. SHA1) of 1) some or all of the User 

15 Credential and 2) one or more parts of the Server's Credential, and 3) optionally of the other input fields 
of the Resource Tag. The User's Credential could include that user's e-mail address. The Server's 
Credential could include that sen/er's domain name, or the domain name associated with the Resource 
Owner. The optional fields from the Resource Tag could include the Resource Identifier. 

At a later time, the Specified User presents the Resource Tag and User Credential Information 
20 to the Resource Owner in a manner that allows the Resource Owner to verify the User's Credential 
Infom^ation. The verification of the User's Credential can be based on a challenge-response 
authentication protocol that proves that the User (client) communicating with the Resource Owner ^ 
(server) has current access to a private key (e.g.. RSA or Elliptic Curve or NTRU private key) associated 
with a public key that appears as one field of the User Credential Information which is digitally signed 
25 along with other credential infonnation by an entity that is trusted by the Resource Owner. The 
verification of the User's Credential can be based on a challenge response authentication protocol that 
proves that the User (client) communicating with the Resource Owner (server) has current access to a 
secret key (e.g.. triple-DES or XTEA or RC5 or AES key) associated with a key identifier that appears as 
one field of the User Credential lnfomiatk)n where the key identifier allows the server to lookup the same 
30 secret key known to the client, and other fields in the User Credential Information are verified using a 
cryptographic checksum based on that same secret key. 

The Resource Owner determines whether to grant access to the Resource (e.g.. e-mail 
message) by comparing a first cryptographic transformation of the Resource Tag to a second 
cryptographic transformation of some or all of the User Credential Information and one or more parts of 

35 the Sen/er's (Resource Owner's) Credential Information, and optionally, one or more of the Input fields to 
the Resource Tag, and then granting access if they are equal, otherwise denying access. The first 
cryptographic transformation is the reverse of the one applied to create the tag from its input fields 
followed by an operation tiiat extracts the Redundancy Field. The second cryptographic transformation 
follows the same steps used to create the Redundancy Field based on verified User Credential 

40 Information, the Sen/er Credential Information, and optionally one or more of the input fields to the 
Resource Tag. Some particular embodiments relating to these aspects are highlighted below. 

(5) A computer program product for use in conjunction with a computer system having a server 
and a client, the computer program product comprising a computer readable storage medium and a 
computer program mechanism embedded Uierein. the computer program mechanism, comprising: a 
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program module that directs the computer systeni anu/ui components thereof including at least one or 
the client or server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for a resource owner authorizing a specific user 
5 the right to access a particular resource, the program module including instructions for A. sending a 
resource tag to a specified user. B. receiving, back from the spedfied user, the resource tag sent earlier 
and a user credential information; C. verifying the user credential information; D. comparing a first 
cryptographic transformation of a first information item to a second cryptographic transformation of a 
second Infomiation item; and E. granting access to the particular resource only If the first cryptographic 
10 transfom^ation of the first information item has a predetennined relationship with the second 
cryptographic transformation of the second infonnation items, and otherwise denying access to the 
particular resource. 

(6) A hardware architecture neutral and operating system neutral and networtc transport neutral 
method for a resource owner authorizing a specific user the right to access a particular resource, the 

15 method comprising: A. sending a first infomnation item to a specified user; B. receiving, back from the 
specified user, the resource tag sent eariier and a user second infomiation item; C. verifying the user 
second information item; and D. comparing a first cryptographic transformation of the first information 
item to a second cryptographic transformation of the second Information item; and E. granting access to 
the particular resource only if the first cryptographic transformation of the first information Item has a 

20 predetennined relationship with the second cryptographic transformation of the second information items, 
and otherwise denying access to the particular resource. 

(7) The method in embodiment (6), wherein the particular resource comprises an e-mail 
message. (8) The method in embodiment (6). wherein the particular resource comprises a promotional 
coupon. (9) The method In embodiment (6). wherein the particular resource comprises an Information 

25 Item in electronic form. (10) The method in embodiment (6), wherein the particular resource comprises 
a storymail story. (11) The method in embodiment (6), wherein the resource tag comprises a message 
tag or a coupon tag. (12) The method in embodiment (6), wherein the resource tag is generated as the 
result of a reversible cryptographic transformation. (13) The metiiod In embodiment (6), wherein the first 
information item comprises a redundancy field and the second infomnation Item comprises a resource 

30 identifier field and the transformation comprises a transformation of one or more of the Redundancy 
Field and the Resource Identifier Field. (14) The method in embodiment (13), wherein at least one of 
the redundancy field and resource identifier field include a message number. (15) The method in 
embodiment (6). wherein tiie transformation comprises a transformation of a Redundancy Field, a 
Resource Identifier Field, and other information. (16) The method in embodiment (6), wherein the 

35 resource tag comprises a message tag or a coupon tag and is generated as the result of a reversible 
cryptographic transformation, the transformation comprising a transfomiation of at least a Redundancy 
Field and a Resource Identifier Field* at least one of the redundancy field and resource identifier field 
including a message number. (17) The method In embodiment (6). wherein the resource tag is sent by 
any one of conventional e-mail, Story Enabled e-mail, display on a web page, or hardcopy media. (18) 

40 The method in embodiment (16), wherein the fields of a Resource Tag are based on one or more secret 
keys known to the Resource Owner. (19) The method in embodiment (18). wherein the one or more 
secret keys known to tiie resource owner use one or a series of block encryption steps on portions of 
the fields in a manner that allows tiie transformation to be reversed by an entity that knows the one or 
more secret keys. (20) The method In embodiment (19), wherein the resource tag comprises a nine- 
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byte to sixteen-byte tag, and the cryptographic transformation is performed by three or more 
applications of eight-byte block encryption using a cipher. (21) The method in embodiment (20), 
wherein a portion of the output bits from each of the applications of eight-byte block encryption are 
exclusively OR'ed with a portion of the input bits to the next one of the applications of eight-block 
encryption. (22) The method in embodiment (20), wherein the cipher Is selected from the group of 
ciphers consisting of a triple-DES based dpher, a XTEA based cipher, a RC5 based cipher, and 
combinations thereof. (23) The method in embodiment (19). wherein the resource tag has an arbitrary 
length and the cryptographic transformation Is perfonmed by a block cipher. (24) The method in 
embodiment (23), wherein the block cipher is operating In Cipher-Block-Chaining mode. (25) The 
method in embodiment (24), wherein: the Cipher-Block-Chaining mode operates with an initialization 
vector, and said initialization vector has a fixed value. (26) The method in embodiment (25), wherein the 
initialization vector has a fixed value. (27) The method in embodiment (25). wherein the initialization 
vector is applied In two passes, a first pass in a first direction (from left to right) across the bytes of the 
fields and then a second pass in the opposite direction to the first pass (from right to left) across those 
resulting bytes, with the end result being that of generating resource tag bits which together form the 
resource tag, and wherein each resource tag bit depends strongly on bits of the Input fields, so that only 
an entity who knows the one or more keys can reverse this cryptographic transformation. (28) The 
method in embodiment (16). wherein the Redundancy Field comprises a cryptographic hash. (29) The 
method in emt>odlment (28), wherein the redundancy field cryptographic hash comprises SHA1 of CO 
some or all of a User Credential, and (ii) one or more parts of a Server Credentials. (30) The method in 
embodiment (29). wherein the redundancy field cryptographic hash further comprises SHA1 of (iii) one 
or more other of the optional other Input fields of the Resource Tag. (31) The method in embodiment 
(30). wherein the optional fields from the Resource Tag Include the Resource Identifier. (32) The 
method In embodiment (29). wherein the User's Credential includes that user's e-mail address. (33) The 
method in embodiment (29), wherein the User's Credential includes an attribute identifying a user or an 
information appliance, computer, or network Interface card address, associated with the user. (34) The 
method in embodiment (29), wherein the Server's Credential includes either one or both of the server's 
internet domain name, or the domain name associated with the Resource Owner. (35) The method in 
embodiment (29). wherein the User's Credential Includes an attribute identifying a user, a user's e-mail 
address, or an information appliance associated with the user or email address; and the Server's 
Credential includes either one or both of the server's internet domain name or the domain name 
associated with the Resource Owner. (36) The method in embodiment (6). wherein the verification of 
the User's Credential is based on a challenge-response authentication protocol. (37) The method in 
embodiment (36), wherein the challenge-response authentication protocol is a protocol that proves that 
the User (client) communicating with the Resource Owner (server) has current access to a private key 
associated with a publk: key. (38) The method in embodiment (37). wherein the private key comprises a 
RSA private key. an Elliptic Curve private key. or a NTRU private key. (39) The method in embodiment 
32 (37), wherein the public key appears as one field of the User Credential Information. (40) The 
method in embodiment (39), therein the User Credential Information is digitally signed along with other 
credential information by an entity that is trusted by the Resource Owner. (41) The method in 
embodiment (36). wherein the challenge-response protocol indicates that the User (client) 
communicating with the Resource Owner (sender) has current access to a secret key associated with a 
key identifier. (42) The method in enibodiment (41). wherein the secret key comprises a triple-DES . 
based secret key, a XTEA based secret key, a RC5 based secret key, or a AES based secret key. (43) 
The method in embodiment (41). wherein the key identifier appears as one field of the User Credential 
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information, (44) The method in embodiment (41), wnerein the key identifier allows the sender to look up 
the same secret key known to the client. (45) The method in embodiment (43), wherein the key 
identifier allows the server to look up the same secret key known to the client, and other fields in the 
User Credential Information are verified using a cryptographic checksum based on that same secret 
5 key. (46) The method in embodiment (6), wherein the first information comprises the Resource Tag, 
and the second information item comprises some portion or all of the User Credential Infomiatlon and 
one or more portions of the Server's or Resource Owner's Credential Infonnation. (47) The method in 
embodiment 41 (46). wherein the second information item optionally comprises one or more of the input 
fields to the Resource Tag. (48) The method in embodiment (6). wherein the comparison comprises a 

10 logical operation. (49) The method in embodiment (48). wherein the comparison comprises a logical 
operation perfonned on a bit. byte, multi-bit. or multi-byte basis. (50) The method in embodiment (6). 
wherein the comparison comprises an algorithm based comparison operation. (51) The method in 
embodiment (6). wherein the comparison comprises a mathemattoal operation. (52) The method in 
embodiment (6), wherein the first information comprises the Resource Tag, and the second information 

15 item comprises some portion or all of the User Credential Information and one or more portions of the 
Server's or Resource Owner's Credential Information, and the comparison comprises at least one of a . 
logical operation and a mathematical operation. (53) The method in embodiment (6). wherein the 
predetennined relationship is equality. (54) The method In embodiment (6), wherein the 
comparison comprises at least one of a logical operation and a mathematical operation and the 

20 predetennined relationship Is equality. (55) The method in embodiment (6), wherein the first infomnation 
item comprises a redundancy field and the second information item comprises a resource identifier field; 
and the first cryptographic transfonnation comprises a process that is the reverse of the process applied 
to create the resource tag from its Input fields followed by an operation that extracts the Redundancy 
Field. (56) The method in embodiment (55), wherein the second cryptographic transformation includes 

25 substantially the same steps used to create the Redundancy Field based on at least one of the verified 
User Credential Infomnation and the Sen/er Credential Information. (57) The method in embodiment 
(55), wherein the second cryptographic transfomnation includes substantially the same steps used to 
create the Redundancy Field based on at least one of the verified User Credential Information and the 
Server Credential Infonnation, and one or more of the input fields to the Resource Tag. (58) The 

30 method of embodiment (40), wherein the trusted entity comprises a Compact Certificate as explained 
eariier, or chain of Compact Certificates leading to a trusted root public key. 

(59) A method for authorizing a user access a resource, the method comprising: sending a 
resource tag to the user; receiving the resource tag and a user credential information from the user; 
verifying the user credential infomnation; comparing a first ciyptographlc transfonmation of the resource 

35 tag to a second cryptographic transformation of some portion or all of the User Credential Information 
and one or more selected portions of the Sen/er's or Resource Owner's Credential Information; and 
granting access to the resource only if tiie first cryptographic transformation of the resource tag matches 
with the second cryptographic transfomnation of the selected portion or all of \he User Credential 
Information and one or more portfons of the Server's or Resource Owner's Credential Information, and 

40 oUienvise denying access to the resource. 

1.8.3 Embodiment of Method for Compressed Digital Certificate 
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In a third aspect, the invention provides a iiaroware architecture neutral and operating system 
neutral and network transport neutral method for representing a digital certificate that enables at least 
encryption and digital signatures using substantially less storage and bandwidth than conventional digital 
certificates. In one embodiment, this method includes the following steps and options or variations. 
5 A common data object header is used that Includes fields called Type, Version, and Content- 

Length, In all communicated data Including certificates. In one embodiment, there is used a single byte 
to represent Type and Version, and 3 bytes to represent Content-Length, or one byte each for Type and 
Version and 2 bytes to represent the Content-Length. The type field may be used to identify that this 
object is a Certificate. The Version number may be used to represent four of more of the following 
10 ' attributes: Algorithm used by Certificate Issuer to sign the certificate, Algorithm to t>e used with the 
Subject* s first public key, Algorithm to be used the Subject's second or subsequent public key, Length of 
each public key. Length of Certificate Issuer's signature, Parameters for each of the algorithms such as 
the exponent to use with RSA public key. Subject Name and/or Character Set of Subject Name, and 
Issuer Name and/or Character Set of Issuer Name. 
15 Two or more (a plurality of) public keys are contained in a single certificate, each with its own 

purpose such as encrypting message or session keys, or signing messages, or signing and encrypting 
data. In one embodiment, include at least two public keys that have the same size (length) and 
algorithm parameters such as RSA Exponent or Diffie-Helman Generator, 

A Tag Field is included that functions as a discriminator of different Certificates issued to the 
20 same Subject The Tag Field may be treated as an unsigned Integer (e.g., a four byte value) that is 
incremented with each Certificate issued to the Subject, so given two Certificates with the same Subject 
Name, it is easy to tell which on is more recent This replaces the validity dates found with X.509 
Certificates. The Tag Field may for example, be treated as four ASCII characters to represent the 
expiration date of the Certificate as a two digit month number and a two digit year number (e.g., MMD'D 
25 or DDMM. etc.). 

The Subject Name and Certificate' Issuer Name are represented in one fixed character set 
determined by the Version Field. For example, represent the Subject Name and Certificate Issuer 
Name as two-byte Unicode characters. 

The Version Field is used to indicate any additional fields that are present in the certificate. 

30 Some particular embodiments relating to these aspects are highlighted below. 

(60) A computer program product for use in conjunction with a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 

35 server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and networic transport protocol neutral manner for representing a digital certificate, the program 
module including instructions for A. using a common data object header In substantially all 
communicated data including communicated certificates; B. providing a plurality of public keys including 

40 a first public key and a second public key in a single certificate, each of the at least first and second 
public keys being associated with its own purpose;' C. providing a Tag Field that functions as a 
discriminator of different Certificates issued to the same Subject; and D. representing a Subject Name 
and a Certificate Issuer Name in one fixed character set determined by the Version Field. 
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(61) A hardware architecture neutral anu operating system neutral and network transport 
neutral method for representing a digital certificate that enables at least encryption and digital signatures 
using substantially less storage and bandwidth than conventional digital certificates, the method 
comprising: A. using a common data object header in substantially all communicated data including 
5 communicated certificates; B. providing a plurality of public keys including a first public key and a 
second public key in a single certificate, each of the at least first and second public keys being 
associated with its own purpose; C. providing a Tag Field that functions as a discriminator of different 
Certificates issued to the same Subject; and D. representing a Subject Name and a Certificate Issuer 
Name in one fixed character set detemnined by the Version Field. 

10 (62) The method in embodiment (61), wherein the common data object header includes a 

plurality of fields includinjg a Type field, a Version field, and a CooteDt-Leugtb .field. (63) The . method in 
embodiment (61), wherein the purpose is selected from the group of purposes consisting of encrypting 
messages, encrypting session keys, signing messages, signing and encrypting data, and combinations 
thereof. (64) The method in embodiment (62), wherein a single byte is used to represent a type and a 

15 version for the Type Field the Version Field; and three bytes are used to represent Content-Length in 
the Content-Length Field. (65) The method in embodiment (62), wherein a first single byte is used to 
represent a type in the Type Field and a second single byte is used to represent a Version in the 
Version Field; and two bytes are used to represent Content-Length in the Content-Length Field. (66) 
The method in embodiment (62), wherein each the byte has a length selected from the set of byte 

20 lengths consisting of 8 bits. 10 bits. 12 bits. 16 bits, 24 bits, 32 bits, 64 bits, 96 bits, and 128 bits. (67) 
The method in embodiment (62), wherein the Type field is used to identify that the object is a Certificate. 
(68) The method in embodiment (62), wherein the version number is used to represent at least one of 
the following attributes; (i) Algorithm used by Certificate Issuer to sign the certificate, (il) Algorithm to be 
used with the Subject's first public key, (mj Algorithm to be used the Subject's second or subsequent 

25 public key. (iv) Length of each public key. (v) Length of Certificate Issuer's signature, (vi) parameters for 
the algorithm, (vii) an exponent to use with RSA public key (viii) Character Set of Subject Name, and 
(ix) Character Set of Issuer Name. (69) The method in embodiment (63). wherein the version number is 
used to represent a plurality of attributes selected from the set of attributes consisting of: 0) Algorithm 
used by Certificate Issuer to sign the certificate, (ii) Algorithm to be used with the Subject's first public 

30 key, (iii) Algorithm to be used the Subject's second or subsequent public key, (iv) Length of each public 
key, (v) Length of Certificate Issuer's signature, (vi) parameter(s) for an algorithm, (vii) an exponent to 
use with RSA public key, (viii) Character Set of Subject Name, and (ix) Character Set of Issuer Name. 
(70) The method in embodiment (63), wherein the Version number is used to represent at least four 
attributes selected from the set of attributes consisting of: (i) Algorithm used by Certificate Issuer to sign 

35 the certificate, (Ii) Algorithm to be used with the Subject's first public key, (iii) Algorithm to be used the 
Subject's second or subsequent public key. (iv) Length of each public key, (v) Length of Certificate 
Issuer's signature, (vi) parameter(s) for an algorithm, (vii) an exponent to use with RSA public key, (viii) 
Character Set of Subject Name, and (ix) Character Set of Issuer Name. (71) The method in 

embodiment (62), wherein the plurality of public keys include at least two public keys that have the same 

40 size (same length) and system parameters. (72) The method in embodiment (62), wherein the system 
parameters include an RSA Exponent or DIffie-Helman Generator. (73) The method in embodiment 
(62), wherein the Tag Field Is treated as an unsigned integer that is incremented with each Certificate 
issued to the Subject. (74) The method in embodiment (62). wherein the unsigned integer has a four 
byte value. (75) The method In embodiment (73). wherein the treatment as an unsigned integer 



wo 02/10962 



60 



PCT/USOl/23713 



providing a mechanism for identifying which of a plurality of certificates having the same Subject Name 
is more recent than another certificate having that Subject. (76) The method in embodiment (75), 
wherein this treatment and mechanism replaces the validity dates found with X.509 or X.509-type 
certificates. (77) The method in embodiment (62). wherein the Tag Field is treated as ASCII characters 
to represent the expiration date of the Certificate* (78) The method in embodiment (77), wherein the 
Tag Reld is treated as four ASCII characters to represent the expiration date of the Certificate as a two 
digit month number and a two digit year number. (79) The method in embodiment (62), wherein the 
Subject Name and Certificate Issuer Name are represented as two-byte characters. (80) The method in 
embodiment (79), wherein the two-byte characters comprise two-byte Unicode characters. (81) The 
method iii embodiment (62), wherein the Version Field is used to indicate any additional fields that are 
present in the certificate. 

(82) A hardware architecture neutral and operating system neutral and networl^ transport 
neutral method for representing -a digital certificate that enables at least encryption and digital signatures 
using substantially less storage and bandwidth than conventional digital certificates, the method 
comprising the steps of: using a common data object header in substantially all communicated data 
including communicated certificates; providing a plurality of public keys including a first public key and a 
second public key in a single certificate, each of the at least first and second public keys being 
associated with its own purpose; providing a Tag Field that functions as a discriminator of different 
Certificates issued to the same Subject; and representing a Subject Name and a Certificate issuer Name 
in one fixed character set determined by the Version Field; the common data object header includes a 
plurality of fields including a Type field, a Version field, and a Content-Length field; the purpose is 
selected from the group of purposes consisting of encrypting messages, encrypting session keys, signing 
messages, signing and encrypting data, and combinations thereof; at most two bytes are used to 
represent a type and a version for the Type Field the Version Field; and at most three bytes are used to 
represent Content-Length in the Content-Length Field; the Type field is used to identify that the object is 
a Certificate; the Version number is used to represent a plurality of attributes selected from the set of 
attributes consisting of: (I) Algorithm used by Certificate Issuer to sign the certificate, (ii) Algorithm to be 
used with the Subject's first public key. (iil) Algorithm to be used the Subject* s second or subsequent 
public key, (iv) Length of each public key, (v) Length of Certificate Issuer's signature, (vi) exponent to use 
with RSA public key, (vii) Character Set of Subject Name, and (vii) Issuer Name; the plurality of public 
keys Include at least two public keys that have the same size and the same system parameters; the Tag 
Field is treated as an unsigned integer that is incremented with each Certificate issued to the Subject; the 
treatment as an unsigned integer providing a mechanism for identifying which of a plurality of certificates 
having the same Subject Name is more recent than another certificate having that Subject; the Tag Reld 
Is treated as ASCII characters to represent the expiration date of the Certificate; the two-byte characters 
comprise two-byte Unicode characters; and the Version Field is used to indicate any additional fields that 
are present in the certificate. 

(83) A method for representing a digital certificate, the method comprising: using a common 
data object header in all communicated data including communicated certificates; providing a plurality of 
public keys including a first public key and a second public key in a single certificate; providing a first 
field that functions as a discriminator of different certificates issued to the same subject; and representing 
a subject name and a certificate issuer name in one fixed character set determined by a second field. 
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1,8.4 Embodiment of Method for Using Common security Protocol Mechanisms 

In a fourth aspect, the invention provides a hardware architecture neutral and operating system 
neutral and network transport neutral method for implementing two or more security protocols such as 1) 
secure interactive sessions, 2) secure unidirectional messaging, 3) secure software downloading, 4) 
5 secure software upgrading, and 5) secure issuing of digital certificates, using a common set of data 
fonmats. algorithms, subroutines, and procedures. For example, in one emt>odiment, the method 
includes the following steps and options or variations. 

Define cryptographic primitives (for formats and algorithms) for 1) Encrypted-Data, which 
provides privacy and data integrity based on a secret key and cipher algorithm (e.g., triple-DES, XTEA, 
10 RC4, AES, etc.), and for 2) SIgned-lnside-Enveloped-Data, which provides transport of a secret key 
{sometimes called a tnessage key or -session key) from SenxHerto Recipient using a public key of the 
recipient and provides data privacy plus integrity using the Encrypted-Data primitive and provides data 
authenticity using a public key digital signature and provides the certificate chain of the Sender. 

For block ciphers (e.g., triple-DES and XTEA) the primitive Includes an Initialization Vector for 
15 Cipher-Block-Chaining mode that is an input to the primitive and appears in the data format of the output, 
and the primitive returns a new Initialization Vector to be used with the next block of Encrypted Data. 
The secret key to the cipher is one input to this primitive. For stream ciphers (e.g., RC4) there is no 
Initialization Vector, and the bytes of the key stream are never reused. The secret key to the cipher Is 
one input to this primitive. In one embodiment, the integrity of the data, that is, tamper detection, is 
20 provided by a cryptographic message authentication code that is based on a secret key, which could be 
equal to or derived from the key used to encrypt the data, where the authentication code Is computed by 
well known algorithms such as CBC>MAC or HMAC. The primitive can take as an optional input some 
data, such as Type, Version and Content-Length fields, that is protected by the cryptographic message 
authentication code, but not part of the output data; for example, the Type field may be transmitted first 
25 before the Encrypted-Data and not be part of the Encrypted-Data. 

The method provides in one embodiment that only these two primitives are used to construct 
two or more protocols. When a protocol application does not have or does not need public keys and/or 
certificates for both the Sender and the Recipient, use fixed public keys and/or certificates. For example, 
a protocol application such as downloading signed sofhvare does not require that the data be encrypted, 
30 so such protocols often Invent a third cryptographic primitive for signed-only data, in contrast this method 
calls for using Signed-lnside-Enveloped-Data to provide the software signing and encryption using a fixed 
Recipient public key to which all receh^ing software knows the private key. 

The certificates used with this protocol include at least signing and encryption public keys, so it 
is possible for the Receiver to send an encrypted message back to the Sender of a message, since the 
35 Senders Certificate in the received message Includes the Senders encryption public key. 

The Signed-lnside-Enveloped-Data primitive provides all the security functions required for 
secure unidirectional messaging such as e-mail or a response to a promotional offer. 

The Signed-lnside-Enveloped-Data primitive provides the critical piece for setting up a session 
key with a new entity for which the Sender knows the Recipient's public key, which could happened via a 
40 plaintext request of the certificate of the Recipient, by sending the Recipient a master secret from which 
the session keys will be derived, or by the Sender having recaVed the Recipienf s certificate in a previous 
communication. 
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The keys for the Encrypted-Dafa primitive can oe derived from information exchanged either in 
the clear (i.e., insecure plaintext) and/or in the Signed-lnside-Enveloped-Data primitive. This provides a 
form of dual key determination and challenge-response authentication. 

New secret session Iceys can be derived from old secret keys that where previously agreed to by the 
5 Sender and Recipient, and thus the overhead of public and private key operations can be avoided by just 
using the Encrypted-Data primitive with appropriate keys. Authentication for a session key can be 
provided by using the Encrypted-Data primitive with values that are produced by the cryptographic hash 
of some or all of the data transmitted before sending the authentication message. Including alt of the 
prior data helps thwart various attacks on cryptographic protocols. 

10 To avoid various protocol attacks, separate keys can be used by the Sender and Recipient by 

•deriving the keyS'in different 1/vays from -shared infonnatidn exchanged learii the protocol and/or fixed 
infomnation known to the Sender and Recipient 

Certificate Issuing can be authenticated by sendirtg a Resource Tag (e.g., Message Tag) to the 
Issuer after the session keys have been established using fixed public and private keys for a client device 
15 that wants to get a Certificate from the Issuer. The fixed keys are replaced with the newly generated 
keys (generated either on the client or by the Issuer) once the client has received the Certificate, and 
optionally the generated keys. 

A Secure Response Session protocol can be implemented using the Signed-lnstde-Enveloped* 
Data primitive with a public key of the Recipient that is included inside the promotional message to which 
20 this is a response session, perhaps Inside a Certificate that is verified by the Sender of the Response, 
and the information contained in the Signed-lnside-Enveloped-Data, including possibly a portion of the 
information encrypted with the Recipient* s public key. being used to derive privacy and integrity keys for a 
bi-directional session. 

A Secure Response Message protocol can be implemented using the Encrypted-Data primitive . 

25 with a secret key know to the Recipient that is included inside the promotional message that was 
received securely, and the Encrypted-Data primitive containing the Response Message. A Secure 
Response Message protocol can be implemented using the Signed-tnside-Enveloped-Data primitive with 
a public key of the Recipient that is included inside the promotional message to which this is a response, 
for example, it may be included inside a Certificate that is verified by the Sender of the Response 

30 Message, and the primitive containing the Response Message. Some particular embodiments relating to 
these aspects are highlighted below. 

(84) A computer program product for use in conjunction with a computer system having a 
server and a client, the computer program product comprising a computer readable storage medium and 
a computer program mechanism embedded therein, the computer program mechanism, comprising: a 

35 program ifnodule that directs the computer system and/or components thereof including at least one or 
the client or server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and networtc transport protocol neutral manner for Implementing a plurality of separate security 
protocols using a common set of criteria, the program module including instructions for A. defining two 

40 cryptographic primitives; and B. using only the two cryptographic primitives to construct the plurality of 
separate security protocols. (85) A hardware architecture neutral and operating system neutral and 
network transport neutral method for implementing a plurality of separate security protocols using a 
common set of criteria, the method comprising the steps of: A. defining two cryptographic primitives; 
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and B. using only the two cryptographic primitives lo construct the plurality of separate security protocols. 
(86) The method in embodiment (85), wherein the two cryptographic primitives are sued to construct a 
greater plurality of security protocols. (87) The method in embodiment (85), wherein the cryptographic 
primitives including formats and algorithms. (88) The method in embodiment (85), wherein the 
cryptographic primitives consist of only formats and algorithms. (89) The method in embodiment (85), 
wherein the cryptographic primitives being for 0) Encrypted-Data. and for (ii) Signed-Inside-Enveloped- 
Data. (90) The method in embodiment (89), wherein the cryptographic primitives for Encrypted-Data 
providing privacy and data integrity based on a secret key and a cipher algorithm. (91) The method in 
embodiment (90), wherein the cipher algorithm being selected from the group of cipher algorithms 
consisting of triple-DES, XTEA, RC4, AES, block cipher algorithms, stream dphers, and combinations 
thereof. (92) The method In embodiment (89), wherein the cryptographic primitives for Signed-lnside- 
Enveloped-Data providing transport of a secret key from Sender to Recipient using a public key of the 
recipient. (93) The method in embodiment (92), wherein the secret key being selected from the set 
comprising a message key and a session key. (94) The method in embodiment (92), wherein the signed- 
inside-enveloped'data further providing data privacy plus integrity using the Encrypted-Data primitive and 
providing data authenticity using a pubfic key digital signature and provides the certificate chain of the 
Sender. (95) The method in embodiment (89), wherein the cryptographic primitives for Encrypted-Data 
providing privacy and data integrity based on a secret key and a cipher algorithm; and the cryptographic 
primitives for Signed-inside-Enveloped-Data providing transport of a secret key from Sender to Recipient 
using a public key of the recipient. (96) The method in embodiment (85), wherein the security protocols 
are selected from the group consisting of: (i) secure interactive sessions, (ii) secure unidirectional 
messaging, (iii) secure software downloading, (iv) secure software upgrading, (v) secure issuing of digital 
certificates, and/or (vi) combinations thereof. (97) The method in embodiment (85), wherein the common 
set of criteria are selected firom the set consisting of data formats, algorithms, subroutines, procedures, 
and combinations thereof. (98) The method in embodiment (89), wherein the cryptographic primitives for 
Encrypted-Data providing privacy and data integrity based on a secret key and a cipher algorithm. (99) 
The method in embodiment (90), wherein the cipher comprise a block cipher; the primitive includes an 
Initialization Vector for Cipher-Block-Chaining mode that is an input to the primitive and appears in the 
data format of the output; and, the primitive returns a new Initialization Vector to be used with the next 
block of Encrypted Data. (100) The method in embodiment (99), wherein the secret key to the cipher is 
one input to this primitive. (101) The method in embodiment (99), wherein the block dpher is a cipher 
selected from the set consisting of a triple-DES based cipher, and a XTEA based cipher. (102) The 
methixl in embodiment (90). wherein the cipher comprise a stream cipher without an Initialization Vector, 
the bytes of the key are not reused, and the secret key to the dpher is one input to this primitive. (103) 
The method in embodiment (102), virfierein the stream cipher comprises a RC4 type cipher. (104) The 
method in embodiment (85), wherein the integrity of the data and associated data tamper detection, is 
provided by a cryptographic message authentication code that is based on a secret key. (105) The 
method in embodiment (104), wherein the secret is equal to or derived from the key used to encrypt the 
data. (106) The method in embodiment (105), the authentication code is computed by a CBC-MAC 
based algorithm and/or a HMAC based algorithm. (107) The method in embodiment (85), wherein the 
primitive takes as an optional input some other data that is protected by the cryptographic message 
authentication code, but not part of the output data. (108) The method in embodiment (107), wherein 
such other data is selected from the set of data identified as data in a Type Field, Version Field. Content- 
Length field, and combinations thereof. (109) The method in embodiment (108), wherein the 
cryptographic primitives include primitives for Encrypted-Data and for Signed-lnside-Enveloped-Data; 
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and the Type field is transmitted first before the fcncrypied-Data and not be part of the Encrypted-Data. 
(110) The method in embodiment (85). wherein the using only the two primitives to construct a plurality of 
separate security protocols further comprises using fixed public l<eys and/or certificates when a protocol 
application does not have, does not use, or does not require public keys and/or certificates for both the 
Sender and the Recipient (111) The method in embodiment (110), wherein for a protocol application 
that does not require that the data be encrypted, using Signed-lnside<Enveloped-Oata to provide the 
software signing, and using a fixed Recipient public Icey to which all receiving software knows the private 
key for the encryption, rather than providing a special third cryptographic primitive for signed-only data as 
IS done In some conventional systems is such circumstances. (112) The method in embodiment (111), 
wherein the protocol application Includes downloading signed software. (113) The method in 
embodiment (85). wherein the using only the two primitives to construct a plurality of separate security 
protocols further comprise including both signing and encryption public keys in the certificates used with 
this protocol so it is possible to send an encrypted message back to the Sender of a message. (114) The 
method In embodiment (85), wherein the Signed-lnslde-Enveloped-Data primitive provides all the security 
functions required for secure unidirectional messaging. (1 15) The method in embodiment (114), wherein 
the unidirectional messaging includes electronic mail (e-mail). (116) The method in embodiment (89), 
wherein the Signed-lnside-Envetoped-Data primitive provides a component for setting up a session key 
with a new entity for which the Sender knows the Recipient's publip key. (117) The method in 
embodiment (116), wherein the Sender knows the redpienfs public key by any one of: (I) a plain text 
request of the certificate of the Recipient, (i') by sending the Recipient a master secret fi'om which the 
session keys are derived, or (iii) by the Sender having received the Redpienfs certificate in a previous 
communication. (118) The method in embodiment (89), wherein the keys for the Encrypted-Data 
primitive are derived from exchanged informatton. (119) The method in embodiment (118). wherein the 
exchanged information is information exchanged either in the clear, or information exchanged In the 
Signed-lnside-Enveloped-Data primitive. (120) The method in embodiment (119), wherein the 
information exchanged in the clear comprises non-secure plain text. (121) The method in embodiment 
(118), wherein the keys for the Encrypted-Data primitive derived from exchanged information provides a 
form of dual key determination and challenge-response authentication. (122) The method in embodiment 
(89), wherein new secret session keys are derived from old secret keys that where previously agreed to 
by the Sender and Redpient thereby avoiding all or a component of overhead of public and private key 
operations by just using the Encrypted-Data primitive with the appropriate keys. (123) The method in 
embodiment (89), wherein authentication for a sessiorf key is provided by using the Encrypted-Data 
primitive with values that are produced by the cryptographic hash of some or all of the data transmitted 
before sending the authentication message. (124) The method in embodiment (123). wherein all of the 
prior data transmitted is included to help thwart attacks on cryptographic protocols. (125) The method in 
embodiment (89), wherein, to avoid various protocol attacks, separate keys are used by the Sender and 
Redpient by deriving the keys In different ways from shared information exchanged eariier In the protocol 
and/or fixed information known to the Sender and Recipient. (126) The method in embodiment (96). 
wherein certificate issuing is authenticated by sending a Resource Tag to the Issuer after the session 
keys have been established. (127) The method in embodiment (126), wherein the fixed public and 
private keys are replaced with the newly generated keys once the dienl has received the Certificate keys. 
(129) The method in embodiment (127), wherein the newly generated keys being generated either on the 
client or by the Issuer. (130) The method in embodiment (126), wherein the fixed public and private keys 
are replaced with the newly generated keys once the client has received the Certificate and the keys. 
(131) The method in embodiment (126), wherein the Resource Tag comprises a Message Tag or a 
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Coupon Tag. (132) The method in embodiment (96), wherein the certificate issuing is further 
authenticated using fixed public and private keys for the client device that wants to get a Certificate fi*om 
the Issuer. (133) The method In embodiment (89). wherein a Secure Response message protocol is 
Implemented using the Signed-lnside-Enveloped-Data primitive with a public key of the Recipient that is 
included inside the message to which this is a response. (134) The method in embodiment (133). 
wherein the message is a promotional message. (135) The method in embodiment (133). wherein the 
message includes a Certificate and the Signed-lnside-Enveloped-Data primitive with a public key of the 
Recipient is inside the Certificate that is verified by the Sender of the Response. (136) The method In 
embodiment (133), wherein this Secure Response message protocol is either a unidirectional response 
message or the set up portion of a bi-directional messaging session. (137) The method in embodiment 
(133), wherein the Secure Response message protocol Is Implemented using the Enarypted-Data 
primitive with a secret key know to the Recipient that is included inside the message that was received 
securely. (138) The method in embodiment (133), wherein the Secure Response message protocol is 
implemented using the Encrypted-Data primitive with a secret key know to the Redptent that is included 
Inside the message that was received securely and the Encrypted-Data primitive containing the 
Response Message. (139) The method In embodiment (137), wherein this Secure Response message 
protocol is either a unidirectional response message or the set up portion of a bi-directional session. 
(140) The method in embodiment (138), wherein this Secure Response message protocol is either a 
unidirectional response message or the set up portion of a bi-directional session. 

1 .8.5 Embodiment of Method for Secure Interactive Session 

In a fifth aspect, the invention provides a hardware architecture neutral and operating system 
neutral and network transport neutral method for secure interactive sessions using less sofhivare code 
and network bandwidth than conventional systems. In one embodiment, the method includes the 
following steps and options or variations. 

The Client sends to the Sen/er a first message and the Server sends to the Client a second 
message, where the first message and second message have substantially the same content, format and 
cryptographic processing, and the first message includes a Client-Nonce, and the second message 
contains a copy of the Client-Nonce extracted from the first message, and the second message has a 
value, sometimes called the Server-Nonce, that was chosen by the Server that is not predictable by the 
Client and is highly unlikely to be previously chosen by the Server. 

The first and second message may or may not have any cryptographic processing, and in 
particular may have no cryptographic processing when the protocol is attempting to reuse cryptographic 
master keys that were established in a previous session, and these messages will have substantially the 
same fomnat, and the Server verifies the existence of the Key-ID from the first message in its cache of 
pairs of Key-ID and Master Key values. 

The first and second message have a common header that includes fields for Type. Version, 
and Content-Length, and the first message contents containing a Key-ID and a Client-Nonce, and the 
second message contents containing the same Key-ID, same Client-Nonce, and a new Sewer-Nonce. 

The Key-ID may be a cryptographic hash (e.g., MD5, SHA-1, SHA-256) of a previously set up 
Master Key. The Ciient-Nonce and Server-Nonce have the same length, which may for example be 16, 
20, 32 bytes, or other length long. 
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The first and second messages can be cryptographicalfy processed using public key 
operations such as RSA. and these messages will have substantially the same format and cryptographic 
processing, and the Client and Server verify the certificate chain in the received second and first 
message respectively. In one embodiment, the first and second messages are created using the Signed- 
5 inside-Enveloped-Data cryptographic primitive defined earlier, and the Client-IMonce (respectively Sender- 
Nonce) is sent to the Server (Client) encrypted by the Sender's (Client's) public key in the. field of the 
public key encryption block that is normally associated with a data encryption key or with an OAEP 
padding seed, and this nonce is used as the encryption key for the Encrypted-Data primitive, and each 
one contains copy of the message Sender's certificate chain. The benefit of transmitting a nonce in the 

10 field normally used for a data encryption key or an OAEP padding seed is that a single cryptographic 
primitive (e.g., Signed- Inside-Enveloped-Data) can be used for secure session setup and for secure 
unidirectional messaging and for other secure protocol applications. Also, the Data carried in the first 
message is a Client-Nonce and the data earned in the second message is the Server-Nonce. An 
important benefit of this design is that the digitally signed portion of the second message can be pre- 

15 computed or even reused with different sessions, and thus the Server does not need to perform a 
computationally expense private key operation to initiate a secure session. 

Next, the Client sends to the server a third message and the Server sends to the Client a fourth 
message, where these two messages can be sent in either order, and they have substantially the same 
format, contents, and cryptographic processing as each other and as with subsequent data transfer 
20 messages, and the Data contents of the third and fourth message include a cryptographic transformation 
of at least the Client-Nonce' and Server-Nonce, where the transformation is slightly different in the third 
and fourth messages. 

The cryptographic transformation in the third and fourth messages can be different by 
exchanging the roles of the Client-Nonce and the Server-Nonce. The cryptographic transformation can 
25 be a hash (e.g., MD5, SHA-1, SHA-256) of the concatenation of the two nonce values. The cryptographic 
transformation can be an encryption (e.g., trip!e-DES, XTEA, RC5. AES) of one nonce value using the 
other nonce value as the key. 

The third and fourth messages may be aeated using the Encrypted-Data cryptographic 
primitive described earlier, where the Encrypted-Data key for the third message is different than the one 
30 for the fourth message, and both keys are derived from a Master Key that is computed with the aid of one 
or more applications of a cryptographic hash function applied to the Client-Nonce and the Server-Nonce 
and some or all of the information in the previously send or received messages. 

For examnle, the Master Key (MK) may be defined by the relationship: MK = HMAC (Server- 
Nonce II Client-Nonce, SHA1 (First-Message) || SHA1 (Second-Message)), where the "||" operator 
35 indicates concatenation, and HMAC is a well known cryptographic primitive based on the hash functions, 
such as the MD5 and/or SHA1 hash functions. 

Alternatively, the Encrypted-Data key for Uie third message equals HMAC (MK, Client-Subject- 
Name), where Client-Subject-Name is one or more fields extracted from the Client's certificate. 

In another alternative, the Encrypted-Data key for the fourth message equals HMAC (MK, 
40 Server-Subject-Name), where Server-Subject-Name is one or more fields extracted from the Server's 
certificate. 
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The Client and Sefver then verify the received fourth, and third messages respectively to 
confirm that they have the expected contents and thus were created by an entity that knew both the 
Client-Nonce and the Server-Nonce. 

Optionally, the Client and Server send subsequent data messages that have substantially the 
5 same format and cryptographic processing as the third and fourth messages. The Client and Sen/er data 
messages may be created using the Encrypted-Data cryptographic primitive defined earlier. 

Advantageously, the protocol does not have (or require) a separate session termination 
message because it uses the signals temnination by closing the underlying network connection (e.g., 
closes the TCP socket). Some particular embodiments relating to these aspects are highlighted below. 

10 (141) A computer program product for use in conjunction with a computer system having a 

server and a client, the computer program product comprising a computer readable storage medium and 
a computer program mechanism embedded therein, the computer program mechanism, comprising: a 
program module that directs the computer system and/or components thereof including at least one or 
the client or server, to function in a specified manner to provide message communications, the message 

15 communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for secure interactive communication sessions, the 
program module including instructions for A. sending to a server, by a client, a first message containing 
a Client-Nonce; B. receiving the first message including the Client-Nonce by the server; C. sending to the 
client, by the server in response to the received first message and Client-Nonce, a second message 

20 containing a copy of the Client-Nonce extracted from the first message, and a value in the form of a 
Sen/er-Nonce that was chosen by the Server that is not predictable by the Client and is unlikely to have 
been previously chosen by the Server; the first message and second message having substantially the 
same content, fonmat and cryptographic processing; D. exchanging third and fourth messages between 
the client and the server (client to server message) and the server and the client (sen/er to client 

25 message) respectively, where the order that the third and fourth messages are sent and received is not 
material; the third and fourth messages Including a content portion that is substantially the same though 
not necessarily identical and having substantially the same fomiat and cryptographic processing as each 
other and as with subsequent data transfer messages; the data contents portions of the third and fourth 
message include a cryptographic transformation of at least the Client-Nonce and Server-Nonce, where 

30 the cryptographic transformation is slightly different in the third and fourth messages; and E. each of the 
server and dient examining the respective received third and fourth messages to confimi that they have 
the expected contents and thus were created by an entity that knew both the Client-Nonce and the 
Sen/er-Nonce. 

(142) A hardware^architecture neutral and operating system neutral and network transport 
35 neutral method for secure interactive communication sessions using less software code and network 
bandwidth than conventional systems, the method comprising: A. sending to a server, by a client, a first 
message containing a Client-Nonce; B. receiving the first message including the Client-Nonce by the 
server; C. sending to the client, by the server in response to the received first message and Client- 
Nonce, a second message containing a copy of the Client- Nonce extracted from the first message, and a 
40 value In the form of a Server-Nonce that was chosen by the Server that is not predictable by the Client 
and is unlikely to have been previously chosen by the Sender; the first message and second message 
having substantially the same content, format and cryptographic processing; D. exchanging third and 
fourth messages between the client and the sen/er (client to sen/er message) and the sen/er and the 
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dient (server to dtent message) respectively, where the order ttiat the third and fourth messages are sent 
and received is not material; the third and fourth messages including a content portion that is 
substantially the same though not necessarily identical and having substantially the same format and 
cryptographic processing as each other and as with subsequent data transfer messages; the data 
5 contents portions of the third and fourth message indude a cryptographic transformation of at least the 
Client-Nonce and Server-Nonce, where the cryptographic transfomiation Is slightly different in the third 
and fourth messages; and E. each of the server and client examining the respective received third and 
fourth messages to confirm that they have the expected contents and thus were created by an entity that 
knew both the Client-Nonce and the Server-Nonce. 

10 (143) The method in embodiment (142), further comprising after the sever and the dIent have 

examined and confirmed that the third and fourth messages were.aeatedi)y .entrtiesihat knew both the 
Client-Nonce and the Sen/er-Nonce; F. the Client and Server optionally sending subsequent data 
messages that have substantially the same format and cryptographic processing as the third and fourth 
messages. (144) The method in embodiment (142). further comprising after a last message has been 

15 communicated between the dient and the server or between the server and the dient; (G) terminating 
the session without a separate session termination message by dosing the underlying network 
connection. (145) The method in embodiment (143), further comprising after a last message has been 
communicated between the client and the sen/er or between the server and the client, (G) terminating the 
session without a separate session termination message by closing the underlying network connection. 

20 (146) The method in embodiment (144), wherein the underlying network connection is a TCP based 
connedion, by cfosing the TCP socket. (147) The method In embodiment (145), wherein the underlying 
network connection is a TCP based connection, by closing the TCP socket. (148) The method in 
embodiment (142), wherein the first and second message have no cryptographic processing when the 
protocol used for the messages is attempting to reuse one or more cryptographic master keys that were 

25 established In a previous messaging session, and the first and second messages have substantially the 
same format, and the Server verifies the existence of a Key-ID from the first message in a sen/er cache 
of pairs of Key-ID and Master Key values. (149) The method in embodiment (148), wherein the first 
and second message have a common header that indudes fields for Type. Version, and Content-Length; 
the first message contents containing a Key-ID and a Cfient-Nonce; and the second message contents 

30 containing the same Key-ID, the same Client-Nonce, and a new Sen/er-Nonce. (150) The method in 
embodiment (148), wherein the Key-ID is a cryptographic hash of a previously set up Master Key. (151) 
The method in embodiment (150), wherein the cryptographic hash is a MD5 based hash, a SHA-1 based 
hash, or a SHA-256 based hash. (152) The method in embodiment (142), wherein the Client-Nonce and 
Server-Nonce have the same length. (153) The method in embodiment (142). wherein the Client-Nonce 

35 and the Server-Nonce have a length of 8 bytes. 10 bytes, 16 bytes. 20 bytes, 24 bytes, 32 bytes, 64 
bytes, 96 bytes, or 128 bytes. (154) The method in embodiment (142), wherein the first and second 
messages are cryptographically processed using public key operations and these messages have 
substantially the same fomiat and cryptographic processing, and the Client and Server verify the 
certificate chain in the received second and first message respectively. (155) The method in embodiment 

40 (142), wherein the public key operation comprises an RSA operation or an RSA based operation. (156) 
The method in embodiment (142). wherein: the first and second messages are created using a Signed- 
Inside-Enveloped-Data cryptographic primitive; the Client-Nonce is sent to the Server encrypted by the 
Server's public key in the field of the public key encryption block that is nonmally assodated with a data 
encryption key or with an OAEP padding seed, and this Client-nonce Is used as the encryptton key for 
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the Encrypted-Data primitive, and each one contains copy of the message Sender's certificate chain; the 
Server-Nonce is sent to the Client encrypted by the Client's public key in the field of the public key 
encryption block that is normally associated with a data encryption key or with an OAEP padding seed, 
and this Server-nonce is used as the encryption key for the Encrypted-Data primitive, and each one 
5 contains copy of the message Sender's certificate chain; and transmission of the Sever-Nonce and 
Client-Nonce in the field nomnally used for a data encryption key or an OAEP padding seed enabling a 
single cryptographic primitive to be used for secure session setup and for secure unidirectional 
messaging and for other secure protocol applications. 

(157) The method in embodiment (156), wherein the cryptographic primitives for Signed-lnside- 

10 Enveloped-Data provide transport of a secret key from Sender to Recipient using a public key of the 
redpient (158) The method in embodiment (156), wherein Ihe jsingle cryptographic primitive comprises a 
Signed-lnside-Enveloped-Data primitive. (159) The method in embodiment (142), wherein the Data 
carried in the first message is a Client-Nonce and the data camed in the second message is the Server- 
Nonce. (160) The method in embodiment (142), wherein a digitally signed portion of the second 

15 message can be pre-computed and/or reused with different messaging sessions, and so that the Server 
need not perfonn a computationally expense private key operation to initiate a secure session. (161) The 
method In embodiment (142), wherein a digitally signed portion of the second message is pre-computed 
for different messaging sessions and no session specific private key operation is performed to initiate a 
secure session. (162) The method in embodiment (142), wherein a digitally signed portion of the second 

20 message is reused from an earlier session for a subsequent messaging session and no session specific 
private key operation Is performed to initiate the subsequent secure session. (163) The method in 
embodiment (142), wherein the cryptographic transformation in the third and fourth messages are the 
same. (164) The method in embodiment (142), wherein the cryptographic transfonnation in the third 
and fourth messages are different by exchanging the roles of the Client-Nonce and the Server-Nonce. 

25 (165) The method in embodiment (142), wherein the cryptographic transformation is a hash of the 
concatenation of the client-nonce and server-nonce values. (166) The method in embodiment (142), 
wherein the hash is selected from the set consisting of MD5, SHA-1 . and SHA-256. (167) The method in 
embodiment (142), wherein the cryptographic transformation is an encryption of one of either the client- 
nonce value or the server-nonce value using the other nonce value as the key. (168) The method in 

30 embodiment (142), wherein the cryptographic transfomnation encryption is selected from the set 
consisting of triple-DES, XTEA, RC5, and AES. (169) The method in embodiment (142), wherein the 
third and fourth messages are created using an Encrypted-Data cryptographic primitive, and wherein the 
Encrypted-Data key for the third message is different than the Encrypted-Data key for the fourth 
message, and both Encrypted-Data keys are derived from a Master Key that is computed with the aid of 

35 one or more applications of a cryptographic hash function applied to at (east the Client-Nonce and the 
Sen/er-Nonce. (170) The method In embodiment (169), wherein the Master Key is computed with the aid 
of one or more applications of a cryptographic hash function applied to the Client-Nonce and the Sen/er- 
Nonce and to some or all of the Information In the previously send or received messages. (171) The 
method in embodiment (170), wherein the Master Key (MK) is computed as the concatenation of at least 

40 a portion of the server-nonce, a portion of the client-nonce, and a portion of the first and second 
messages. (172) The method in embodiment (170), wherein the Master Key (MK) is computed as a 
concatenation as follows: MK = HMAC (Server-Nonce || Client-Nonce, SHA1 (First-Message) || SHA1 
(Second-Message)). (173) The method In embodiment (169), wherein the Encrypted-Data key for the 
third message equals HMAC (MK, Client-Subject-Name), where a Client-Subject-Name is generated 
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from one or more fields extracted from the Clienrs certificate. (174) The method In embodiment (169), 
wherein the Encrypted-Data key for the fourth message equals HMAC (MK, Server-Subject-Name), 
where Server-Subject-Name is one or more fields extracted from the Server's certificate. (175) The 
method in embodiment (169). wherein: the Encrypted-Data key for the third message equals H1\^AC 
5 (MK, Ctient-Subject-Name), where a Ciient-Subject-Name is generated from one or more fields extracted 
from the ClienVs certificate; and the Encrypted-Data key for the fourth message equals HMAC (MK. 
Sen/er-Subject-Name), where Server-Subject-Name is one or more fields exfracted from the Sender's 
certificate. 

(176) A method for conducting secure interactive communication sessions between a server 
10 and a client, the method comprising: sending a first message containing a first token chosen by the 

client; receiving the first message including the first .token .l)y .the .serven sending a .second message 
containing a copy of the first token extracted from the first message, and a second token that was chosen 
. by the server, by the server; exchanging third and fourth messages between the client and the server, the 
third and fourth messages Including a content portion having substantially the same format and 
1 5 cryptographic processing as each other, the contents portions of the third and fourth messages Including 
a cryptographic transformation of at least the first token and second token; and each of the server and 
client examining the respective received third and fourth messages to confimi that they were created by 
an entity that knew both the first token and the second token. 

(177) The method in embodiment (176), wherein the cryptographic transformation is slightly 
20 different in the third and fourth messages. (178) The method in embodiment (176), wherein the first 

token comprises a client-nonce and the second token compnses a server-nonce. 

(179) A computer program product for use in conjunction with a computer system having a 
server and a client, the computer program product comprising a computer readable storage medium and 
a computer program mechanism embedded therein, the computer program mechanism, comprising: a 

25 program module that directs the computer system and/or components thereof including at least one of 
the client or server, to function in a specified manner to conduct secure interactive communication 
sessions between a server and a client, the communications occurring in a computer system hardware 
architecture neutral and operating system neutral and network transport protocol neutral manner for 
secure interactive communication sessions, the program module including instructions for: sending a first 

30 message containing a first token chosen by the client; receiving the first message including the first token 
by the server, sending a second message containing a copy of the first token extracted from the first 
message, and a second token that was chosen by the server, by the sender; exchanging third and fourth 
messages between the client and the server, the third and fourth messages including a content portion 
having substantially the same format and cryptographic processing as each other, the contents portions 

35 of the third and fourth messages Including a cryptographic transfonnation of at least the first token and 
second token; and each of the senrer and client examining the respective received third and fourth 
messages to confirm that they were created by an entity that knew both the first token and the second 
token. (180) The computer program in embodiment (179), wherein the cryptographic transformation is 
slightly different in the third and fourth messages. 

40 

1.8.6 Embodiment of Method for Secure Unidirectional Messaging 



In a sixth aspect, the invention provides a hardware architecture neutral and operating system 
neutral and network transport neutral method for secure unidirectional messaging using less software 
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code and network bandwidth than conventional systems. In one embodiment, the method includes the 
following steps and options or variations. 

The Sender extracts the appropriate public key (e.g. RSA public key) and matching destination 
address (e.g., e-mail address or URL) of the Recipient from a storage means that is trusted and has been 
5 verified previously using a digital signature (e.g., verified with a trusted public key) or cryptograpWc 
checksum (e.g., verified with a trusted key derived from a Master Key or Session Key or Message Key). 

The storage means in this or other aspects and embodiments, may for example, be a Compact 
Certificate as explained earlier, or chain of Compact Certificates leading to a trusted root public key. The 
storage means may also or altematively be. for example, a previously received story enabled message 
10 that was securely received and verified by mechanisms that are trusted for that kind of message. In yet 
•other embodiments^ the storage means-can lje a TioTmal e-inail message or web page, whidh'the'Sender 
trusts that has been copied into the Sender's computer memory via mechanisms that the Sender trusts. 

Next, the Sender extracts their own private signing key and certificate chain from a trusted 
storage means, and then passes that extracted information, and the data of the message along with the 
15 Recipient's public enveloping key, and a fresh random data encryption key and fresh random OAEP 
padding seed to the Signed-lnside-Enveloped-Data cryptographic primitive to construct a secure 
unidirectional message. 

The OAEP padding seed and the data encryption key can be the same value to avoid the 
overhead of generating multiple random values, or may be different values. The Sender's private key and 
20 certificate chain may be fixed values shared among many Senders or may differ and be unfixed. These 
values can be either widely known, or the Sender's software may employ mechanisms to make it difficult 
to discover these values through a process of reverse engineering. 

The Redpient receives the message and extracts Its own private key from a secure storage 
means to decrypt the public key encryption, extract the data encryption key. decrypts the data which is 
25 digitally signed, and verifies the signature of the data and the certificate chain of the Sender, and all of 
this is done using the same cryptographic primitive that is used with at least a secure session protocol. 
Some particular embodiments relating to these aspects are highlighted below. 

(181) A computer program product for use in conjunction with a computer system having a 
server and a client, the computer program product comprising a computer readable storage medium and 

30 a computer program mechanism embedded therein, the computer program mechanism, comprising: a 
program module that directs the computer system and/or components thereof including at least one or 
the client or server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for secure unidirectional messaging, the program 

as module including instructions for: A. extracting, by the sender, an appropriate public key and matching 
destination address of a Recipient from a storage means that is toisted and has been verified; B. 
extracting, by the sender, the sender's own private signing key and certificate chain from a trusted 
storage means; C. passing, by the sender, that extracted public key and matching destination address 
and private signing key and certificate chain information, and the data of the message along with the 

40 Recipient's public enveloping key, and a fresh random data encryption key and fresh random OAEP 
padding seed to the Signed-lnside-Enveloped-Data cryptographic primitive to construct a secure 
unidirectional message; D. sending, by the sender, the constructed secure unidirectional message; E. 
receiving, by the Recipient, the message; F. extracting, by the Recipient, its own private key from a 
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secure storage means and decrypting the public key encryption; G. extracting, by the Recipient, the data 
encryption key, and decrypting the data which is digitally signed; and H. verifying the signature of the 
data and the certificate chain of the Sender; I. wherein this is done using the same cryptographic 
primitive that is the same as the cryptographic primitive used with at least a secure session protocol. 



neutral method for secure unidirectional messaging using less software code and network bandwidth 
than conventional systems, the method comprising: A. extracting, by the sender, an appropriate public 
key and matching destination address of a Recipient from a storage means that Is trusted and has been 
verified; B. extracting, by the sender, the sender's own private signing key and certificate chain from a 

10 trusted storage means; C. passing, by the sender, that extracted public key and matching destination 
address and .private signiDg.kay.and certificatachain Jnforniation. and thedata of the message-along with 
the Reclpienf s public enveloping key, and a fresh random data encryption key and fresh random OAEP 
padding seed to the Signed- Inside-Enveloped-Data cryptographic primitive to construct a secure 
unidirectional message; D. sending, by the sender, the constmcted secure unidirectional message; E. 

15 receiving, by the Recipient, the message; F. extracting, by the Recipient. Its own private key from a 
secure storage means and decrypting the public key encryption; G. extracting, by the Recipient, the data 
encryption key, and decrypting the data which is digitally signed; and H. verifying the signature of the 
data and the certificate chain of the Sender; I. wherein this is done using the same cryptographic 
primitive that is the same as the cryptographic primitive used with at least a secure session protocol 

20 (183) The method in embodiment (182), wherein the appropriate public key comprises an RSA 

based public key. (184) The method in embodiment (182), wherein the matching destination address Is 
selected from the set consisting of an e-mail address and a URL. (185) The method in embodiment 
(182). wherein the storage means is trusted and has been previously verified using a digital signature or 
cryptographic checksum. (186) The method in embodiment (182), wherein the digital signature provides 

25 verification with a tmsted public key. (187) The method in embodiment (182), wherein the cryptographic 
checksum provides verification with a trusted key derived from a Master Key, a Session Key. or a 
Message Key. (188) The method in embodiment (182), wherein the storage means is selected from the 
group consisting of a Compact Certificate, a chain of Compact Certificates leading to a trusted root public 
key. or combinations thereof. (189) The method In embodiment (182), wherein the storage means is a 

30 previously received Storymail story enabled message that was securely received and verified by 
mechanisms that are trusted for that kind of message. (190) The method In embodiment (182), wherein 
the storage means is any conventional e-mail message or web page which the Sender trusts that has 
been copied into the Sender's messaging platfomi memory via mechanisms that the Sender tmsts. (191) 
The method in embodiment (190), wherein the messaging platform is a messaging platfomi selected 

35 from the set consisting of: a computer, a sender, a PDA, a telephone, an appliance, an infomiation 
appliance, a pager, or any other device supporting such messaging. (192) The method in embodiment 
(182), wherein the OAEP padding seed and the data encryption key are different values. (193) The 
method in embodiment (182), \yHerein the OAEP padding seed and the data encryption key are the same 
value to avoid the overhead of generating multiple random values. (194) The method In embodiment 

40 (182), wherein the Sender's private key and certificate chain comprise fixed values shared among a 
plurality of Senders. (195) The method in embodiment (182), wherein the Sender's private key and 
certificate chain fixed values are widely known. (196) The method in embodiment (182), wherein the 
Sender's private key and certificate chain fixed values are not widely known and the Sender's software 



5 



(182) A hardware architecture neutral and operating system neutral and network transport 
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employs mechanisms to make it difficult to di%>covei tliese values througii a process of reverse 
engineering. 

(197) A method for secure unidirectional messaging from a sender to a recipient, the method 
comprising: obtaining, by the sender, a public key and destination address of a message recipient and 
5 the sender's own private signing key and certificate chain firom one or more trusted source; passing, by 
the sender, the extracted public key and matching destination address and private signing key and 
certificate chain information, and the data of an intended message along with the recipient's public 
enveloping key and a random data encryption key and random padding seed to a cryptographic primitive; 
and constructing, by the sender, a secure unidirectional message there from. 

10 (198) The method of embodiment (197), further comprising: sending, by the sender, the constructed 
•secure unidirectional message to the recipient. <199) The method of embodiment (198), further 
comprising: receiving the secure unidirectional message by the recipient; extracting, by the Recipient, the 
recipient's own private key from a secure source and decrypting the public key encryption, and the data 
encryption key and decrypting the data which is digitally signed; and verifying the signature of the data 

15 and the certificate chain of the sender. (200) The method of embodiment (198), wherein the message is 
an e-mail message. (201) The method of embodiment (198). wherein the message Is a Storymail story 
message. (202) The method of embodiment (198), wherein the trusted source or storage means 
comprises a Compact Certificate as explained eariier. or chain of Compact Certificates leading to a 
trusted root public key. 

20 

1.8.7 Embodiment of Method for Secure Certificate Issuing 

In a seventh aspect, the invention provides a hardware architecture neutral and operating 
system neutral and networic transport neutral method for secure certificate Issuing using less software 
code and network bandwidth than conventional systems. In one embodiment this method includes the 
25 following steps with options and variations. 

The Client (or other entity), which is requesting a certificate, extracts a network address (e.g., 
URL) for the Issuer from a trusted storage means. For example, the trusted storage means can be data 
compiled into the Client software, or the trusted storage means can be data received from 
communicating with a Sen/er via a secure session. 

30 The Client extracts a Resource Tag (e.g., message tag) related to its own Subject Name (e.g., 

e-mail address) from a message that was received from a Server. 

The Client then extracts a fixed public and private key and certificate chain from a trusted 
storage means and uses that Information along with the previously extract network address to create a 
secure session with the Issuer, The secure session authenticates the issuer using the same protocol as 
35 described elsewhere in this specification. The public and private key operations, may for example, be 
performed by any asymmeinc cryptosystems such as RSA, Elliptic Curve, or NTRU. 

The Client sends, as its first Data message (after the session setup messages, if any) structure that has 
a common header with fields for Type, Version and Content-Length, and the contents include the 
Resource Tag, the Client's Subject Name, and optionally one or more public keys that the Client has 
40 generated. 

The Issuer verifies that a valid Server issued the Resource Tag and that the tag is valid for the 
given received Subject Name. The Issuer creates a Compact Certificate with one or more public keys 
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and with the Client's Subject Name and digitally signs the certificate with the Issuer's private key, where 
the public lcey(s) could be generated by the Issuer or sent to the Issuer by the Client who generated 
them. The Issuer sends a message back to the Client over the secure channel where the message 
includes the Compact Certificate and if the Issuer generated the public key(s), the message includes the 
5 matching private key(s). Finally, the Client places the Compact Certificate and keys into a trusted storage 
means for later use. 

Some particular embodiments relating to these aspects are highlighted below. (203) A 
computer program product for use in conjunction with a computer system having a server and a client, 
the computer program product comprising a computer readable storage medium and a computer 

10 program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof Induding^t ieast.one.or.the client or 
server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for secure certificate issuing by an Issuer to a 

15 Client requesting the certificate, the program module including instructions for A. extracting, by a 
certificate requesting client, a network address for the Issuer from a trusted source or storage means; B. 
extracting, by the client, a Resource Tag related to its own Subject Name from a message that was 
received from a Sen/er; C. extracting, by the client, a public and private key and certificate chain from a 
trusted source; D. using the extracted information to create a secure session with the Issuer that 

20 authenticates the Issuer using the same protocol; E. sending, by the client, as the dienfs first Data 
message after any session setup messages, a data structure that has a common header with fields for 
Type, Version and Content-Length, and contents that include the Resource Tag. the Client's Subject 
Name, and optionally one or more public keys that the Client has generated; F. verifying, by the 
certificate issuer, that a valid Server issued the Resource Tag and that the Resource Tag is valid for tHe 

25 given received Subject Name; G. creating, by the issuer, a Compact Certificate with one or more public 
keys and with the Client's Subject Name; H. digitally signing, by the issuer, the certificate with the 
Issuer's private key; and I. sending, by the certificate Issuer, a message back to the Client over the 
secure channel, where the message includes the Compact Certificate and if the Issuer generated the 
public key(s), the message includes the matching private key(s). 

30 (204) A hardware architecture neutral and operating system neutral and network transport 

neutral method for secure certificate Issuing by an Issuer to a Client requesting the certificate using less 
software code and network bandwidth than conventional systems, the method comprising the steps of: A. 
extracting, by a certificate requesting client, a network address for the Issuer from a trusted source or 
storage means; B. extracting, by the client, a Resource Tag related to its own Subject Name from a 

35 message that was received from a Sen/er; C. extracting, by the client, a public and private key and 
certificate chain from a trusted source; D. using the extracted information to create a secure session with 
the Issuer that authenticates the issuer using the same protocol; E. sending, by the client, as the client's 
first Data message after any session setup messages, a data structure that has a common header with 
fields for Type, Version and Content-Length, and contents that include the Resource Tag, the Client's 

40 Subject Name, and optionally one or more public keys that the Client has generated; F. verifying, by the 
certificate issuer, that a valid Server issued the Resource Tag and that the Resource Tag is valid for the 
given received Subject Name; G. creating, by the issuer, a Compact Certificate with one or more public 
keys and with the Client's Subject Name; H. digitally signing, by the issuer, the certificate with the 
Issuer's private key; and I. sending, by the certificate issuer, a message t>ack to the Client over the 
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secure channel, where the message includes the Compact Certificate and if the Issuer generated the 
public key(s). the message includes the nriatching private key(s). 

(205) The method in embodiment (204), further comprising: the client placing the Compact 
Certificate and keys into its tmsted source or storage means. (206) The method in embodiment (204). 
5 wherein the one or more public key(s) are generated by the Issuer or send to the Issuer by the Client who 
generated them. (207) The method in embodiment (204). wherein where the one or more public key(s) 
are sent to the Issuer by the Client who generated them. (208) The method in embodiment (204), 
wherein the trusted source or storage means is data compiled into the Client software. (209) The method 
in embodiment (204), wherein the tmsted source or storage means is data received from communicating 

10 with a Server via a secure session. (210) The method in embodiment (204), wherein the trusted source 
comprises a trusted storage. .(21.1) The .method Jn embodiment (204). wherein -the network address 
comprises a URL. (212) The method In embodiment (204). wherein the Resource Tag comprises a 
message tag. (213) The method in embodiment (204), wherein the Subject Name comprises an e-mail 
address. (214) The method in embodiment (204), wherein the public and private key operations are 

16 performed by any asymmetric cryptosystems. (215) The method In embodiment (214), wherein the 
asymmetric cryptosystem is selected from the group consisting of RSA, Elliptic Curve, and NTRU. (216) 
The method in embodiment (204), wherein the public and private key extracted by the client are fixed 
public and private keys. (217) The method in embodiment (204), wherein the public and private key and 
certificate chain extracted by the client are fixed public and private keys and certificate chain. 

20 (218) A method for secure certificate issuing by an issuer to an entity requesting the certificate, 

the method comprising: extracting, by the entity, a network address for the certificate issuer from a 
trusted source; extracting, by the entity, infonmalion including a resource tag related to its own subject 
name from a message that was received from a sen/er. and a public key and a private key and certificate 
chain from a trusted source; using, by the entity, the extracted information to aeate a secure session with 

25 the issuer that authenticates the tssuen and sending, by the entity, as a component of the entity's first 
data message after any session setup messages, a data structure that includes the resource tag and 
subject name. 

(219) The method of embodiment (218), further comprising: verifying, by the issuer, that a valid 
sewer issued the resource tag and that the resource tag is valid for the given received subject name; 

30 creating, by the issuer, a certificate with one or more public keys and with the entity's subject name; 
digitally signing, by the Issuer, the certificate with the issuer's private key; and sending, by the issuer, a 
message back to the entity over the secure channel, where the message Includes the certificate. (220) 
The method of embodiment (219). further comprising: receiving the certificate by the requesting entity. 
(221) The method of embodiment (219), wherein the requesting entity comprises a requesting client. 

35. (222) The method of embodiment (218), wherein the requesting entity comprises a requesting client. 
(223) The method of embodiment (219). wherein if the issuer generated the public key(s), the message 
sent back to the entity includes the matching private key(s). (224) The method of embodiment (219). 
wherein the requesting entity comprises a requesting client (225) The method of embodiment (219). 
wherein the data structure includes a common header with fields for type, version, and content-length. 

40 and contents that include the resource tag, the entity's subject name. (226) The method of embodiment 
(225). wherein the data structure further optionally includes one or more public keys that the entity has 
generated. (227) The method of embodiment (226), wherein the entity comprises a client. (228) The 
method of embodiment (204), wherein the trusted source or storage means comprises a Compact 
Certificate as explained eariier, or chain of Compact Certificates leading to a trusted root public key. 
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1 .8.8 Embodiment of Method for Secure Response Session 

In an eighth aspect, the invention provides a hardware architecture neutral and operating 
system neutral and network transport neutral method for secure response session using less software 
code and network bandwidth than conventional systems. In one embodiment, this method includes the 



The Client, who is establishing a secure response session to the Merchant in order to respond 
to a message from the Merchant, extracts the Merchant's public key (e.g. RSA public key) and matching 
destination address (e.g., URL) of the Merchant from a trusted storage means that has been verified 
previously using a digital signature (verified with a tnjsted public key) or cryptographic checksum (verified 
with a trusted key derived from a Master Key or Session Key or Message Key). 

The trusted storage means can, for example, be data from a normal e-maii message or a non- 
secured web page, or a secured web page (e.g., secured by SSL, PCT. or TLS). Also or alternatively, 
the trusted storage means can be data received from communicating with a Server via a secure session. 

Next, the Client extracts its public and private key and certificate chain firom a trusted storage 
means and uses that information along with the previously extract destination address to create a secure 
session with the Merchant using the previously explained secure session protocol, and the Client's first 
Data message, which is sent after the session setup messages, contains a Resource Tag that was 
Included in the message received from the Merchant to which this session is a response. 

The Client's keys and certificate chain may be fixed values shared by more than one Client 
system, in which case, the Merchant will authenticate the Client based on this Resource Tag. The 
Client's keys and certificate chain can be unique to this Client, and the Merchant can authenticate Wye 
Client using this unique certificate and/or using a Resource Tag was included in the message received 
from the Merchant to which this session is a response. 

After the Merchant has performed the session setup portion of the secure session protocol, it 
verifies the Client's certificate chain and verifies the Resource Tag that is received in the first Data 
message from the Client. The Client and Merchant optionally exchange additional data related to the 
application that is using tills secure response protocol. Advantageously, either the Client or the Merchant 
can terminate the session by closing the underlying network connection (e.g.. TCP socket) so that a 
separate session termination Is not required. Some particular embodiments relating to these aspects are 
highlighted below. 

(229) A computer program product for use in conjunction with a computer system having a 
server and a client, the computer program product comprising a computer readable storage medium and 
a computer program mechanism embedded therein, the computer program mechanism, comprising: a 
program module that directs the computer system and/or components thereof including at least one or 
the client or sen/er, to function In a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for conducting a secure response session, the 
program module including instructions for: A. extracting, by a Client who is establishing a secure 
response session to a Entity in order to respond to a message from the Entity, the Entity's public key and 
matching destination address of the Entity firom a trusted source or storage means; B. extracting, by the 
Client, the Client's public and private key and certificate chain from a trusted source or storage means; C. 



following steps with options and variations. 
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using the extracted client public and private key ano certificate chain information along with the 
previously extracted Entity destination address to create a secure session with the Entity using a secure 
session protocol; D. sending, by the Client, a first Data message after any session setup messages, that 
contains a Resource Tag that was included in the message received from the Entity to which this client 
Initiated session is a response; E. setting up, by the Entity, the. session setup portion of the secure 
session protocol; and F. verifying, by the Entity, the Client's certificate chain and the Resource Tag that is 
received in the first Data message from the Client. 

(230) A hardware architecture neutral and operating system neutral and network transport 
neutral method for secure response session using less software code and network bandwidth than 
conventional systems, the method comprising the steps of: A. extracting, by a Client who is establishing a 
secure response session to a Entity in order to respond to .a xnessage from ihe .Entity, the Entityts public 
key and matching destination address of the Entity from a trusted source or storage means; B. extracting, 
by the Client, the Client's public and piivaie key and certificate chain from a trusted source or storage 
means; C. using the extracted client public and private key and certificate chain information along with 
the previously extracted Entity destination address to create a secure session with the Entity using a 
secure session protocol; D. sending, by the Client, a first Data message after any session setup 
messages, that contains a Resource Tag that was included in the message received from the Entity to 
which this client initiated session is a response; E. setting up, by the Entity, the session setup portion of 
the secure session protocol; and F. verilying, by the Entity, the Client's certificate chain and the Resource 
Tag that is received in the first Data message from the Client. 

(231) The method In embodiment (230), further comprising: Q. exchanging, between the Client 
and the Entity, additional data related to the application that is using the secure response protocol. (232) 
The method in embodiment (230), further comprising: H. terminating the session, by either the Client or 
the Entity, by closing the underlying network connection. (233) The method in embodiment (232), 
wherein the underiying network connection Is a TCP-based network connection. (234) The method fn 
embodiment (232), wherein the public key and matching destination address has been verified previously 
using a digital signature (verified with a trusted public key) or cryptographic checksum (verified with a 
trusted key derived from a Master Key or Session Key or Message Key). (235) The method in 
embodiment (230), wherein the Entity's public key comprises a RSA or a RSA based public key. (236) 
The method in embodiment (230), wherein the matching destination address comprises a URL or URL 
based address. (237) The method in embodiment (230), wherein the trusted source or storage means 
comprises data selected from the set consisting of a normal conventional e-mail message, a non-secured 
web page, a secured web page, arid combinations thereof. (238) The method in embodiment (230), 
wherein the secured web page is secured by any of SSL, PCT, or TLS. (239) The method in 
embodiment (230), wherein the trusted storage means comprises data received firom communicating with 
a Server via a secure session. (240) The method in embodiment (230), wherein the Client* s keys and 
certificate chain comprise fixed values. (241) The method in embodiment (230), wherein the Client's 
keys and certificate chain comprise fixed values shared by more than one Client system and wherein the 
Entity authenticates the Client based on this Resource Tag. (242) The method in embodiment (230), 
wherein the Client's keys and certificate chain are unique to this Client, and the Entity authenticates the 
Client using this unique certificate and/or using a Resource Tag was included in the message received 
from the Entity to which this session is a response. (243) The method in embodiment (230), wherein the 
Entity comprises a Merchant. 
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(244) A method for conducting a secure icbjjunse session from a Client that is establishing a 
secure response session to an Entity in order to respond to a message from the Entity, the method 
comprising the steps of: extracting, by the Client, infomnation including the Entity's public key and 
destination address and Client's public and private key and certificate chain firom one or more trusted 

5 source; using, by the Client, the extracted infonmation to create a secure session with the Entity using a 
secure session protocol; and sending, by the Client, a first data message that contains a resource tag- 
that was included in the message received from the Entity to which this Client initiated session is a . 
response. 

(245) The method in embodiment (244), wherein the first data message is sent after one or 
10 more session setup message. (246) The method in embodiment (244), further comprising: setting up, by 

the Entity, the session setup portion of the secure session .protocol; .and verifying, by the Entity, the 
Client's certificate chain and the Resource Tag that is received in the first Data message from the Client. 
(247) The method in embodiment (244), wherein the Entity comprises a Merchant. (248) The method In 
embodiment (246). wherein the Entity comprises a Merchant. (249) The method of embodiment (230). 
15 wherein the trusted source or storage means comprises a Compact Certificate as explained eariier. or 
chain of Compact Certificates leading to a trusted root public key. 

(250) A computer program product for use in conjunction with a computer system, the 
computer program product comprising a computer readable storage medium and a computer program 
mechanism embedded therein, the computer program mechanism, comprising: a program module that 

20 directs the computer system and/or components thereof, to function in a specified manner to conduct a 
secure response session from a Client that Is establishing a secure response session to an Entity in 
order to respond to a message from the Entity and occuning in a computer system hardware architecture 
neutral and operating system neutral and network transport protocol neutral manner for conducting a 
secure response session, the program module including instructions for extracting, by the Client, 

25 information including the Entity's public key and destination address and Client's public and private key 
and certificate chain firom one or more trusted source; using, by the Client, the extracted information to 
create a secure session with the Entity using a secure session protocol; and sending, by the Client, a first 
data message that contains a resource tag that was included in the message received from the Entity to 
which this Client initiated session is a response. 

30 

1«8.9 Embodiment of Method for Secure Unidirectional Response Message 

In a ninth aspect, the invention provides a hardware architecture neutral and operating system 
neutral and network transport neutral method for secure unidirectional response message using less 
software code and network bandwidth than conventional systems. In one embodiment, this method 
35 includes the following steps with options and variations. 

The Client, who is sending a secure response message to the Merchant (or other entity) in 
order to respond to a message from the Merchant, such as a promotional offer, extracts the Merchant's 
public key (e.g. RSA public key) and matching destination address (e.g.. e-mail address) of the Merchant 
firom a trusted storage means that has been verified previously using a digital signature (verified with a 
40 trusted public key) or cryptographic checksum (verified with a trusted key derived from a Master Key or 
Session Key or Message Key). 
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For example, the trusted storage means can be data from a normal e-mail message or a non- 
secured web page, or a secured web page (e.g., secured by SSL, PCT, or TLS). Also, or altematfvely. 
the trusted storage means can be data received from communicating with a Server via a secure session. 

The Client then extracts its public and private key and certificate chain from a trusted storage 
5 means and uses that information along with the previously extracted destination address to create a 
secure unidirectional message to the Merchant using the previously explained secure unidirectional 
message protocol (e.g.. using the Signed-lnslde-Enveloped-Data cryptographic primitive), and the Data 
portion of the Client's message contains a Resource Tag that was included in the message received from 
the Merchant to which this message is a response. 

10 In one embodiment, the Client's keys and certificate chain can be fixed values shared by more 

than one -Client system, in which -case, ihe -MerchantwIll 'authenticate 1he Client based on this Resource 
Tag. The Client's keys and certificate chain can be unique to this client, and the Merchant can 
authenticate the Client using this unique certificate and/or using a Resource Tag was included in the 
message received from the Merchant to which this session is a response. The Merchant verifies the 

15 Client's certificate chain and verifies the Resource Tag that is included in the Data portion of the received 
message. Finally, the Merchant perfomns an appropriate application-level action for the received 
response message. 

Some particular emt>odiments relating to these aspects are highlighted below. (251) A 
computer program product for use in conjunction with a computer system having a server and a client, 

20 the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 
server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 

25 neutral and network transport protocol neutral manner for secure unidirectional response message, the 
program module including instructions for: A. extracting, by a Client who Is sending a secure response 
message to the Entity in order to respond to a message from the Entity, the Entity's public key and 
matching destination address of the Entity from a trusted storage means; B. extracting, by the Client, the 
Client's public and private key and certificate chain from a trusted source or storage means; C. using, the 

30 extracted Client's public and private key and certificate chain information along with the previously 
extracted Entity's destination address to create a secure unidirectional message to the Entity using the a 
secure unidirectional message protocol, a data portion of the Client's message containing a Resource 
Tag that was included in the message received from the Entity to which this message'is a response; and 
D. verifying, by the Entity, the Client's certificate chain. 

35 (252) A hardware architecture neutral and operating system neutral and network transport 

neutral method for secure unidirectional response message using less software code and network 
bandwidth than conventional systems, the method comprising the steps of: A. extracting, by a Client who 
is sending a secure response message to the Entity in order to respond to a message from the Entity, the 
Entity's public key and matching destination address of the Entity from a trusted storage means; B. 

40 extracting, by the Client, the Client's public and private key and certificate chain from a trusted source or 
storage means; C. using, the extracted CWenVs public and private key and certificate chain information 
along with the previously extracted Entity's destination address to create a secure unidirectional message 
to the Entity using the a secure unidirectional message protocol, a data portion of the Client's message 
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containing a Resource Tag that was inducted in the message received from the Entity to which this 
message is a response; and D. verifying, by the Entity, th^ Client's certificate chain. . 

(253) The method in embodiment (252), further comprising: E. performing, by the Entity, an 
appropriate application-level action for the received response message. (254) The method in 
embodiment (252). wherein the Entity's public key comprises an RSA or RSA-based key. (255) The 
method in embodiment (252), wherein the matching destination address comprises an e-mail address. 
(256) The method in embodiment (252). wherein the public key and matching destination address have 
been verified previously using a digital signature (verified with a trusted public key) or cryptographic 
checksum (verified with a trusted key derived from a IWaster Key or Session Key or Message Key). (257) 
The method In embodiment (252). wherein the tmsted source or storage means comprises data from a 
normal e-mail message, a non-secured .web .pagei,x>r.a secured web page, or^mblnation thereof. <25&) 
The method in embodiment (252), wherein the web page is secured by one of the set consisting or SSL, 
PCT, or TLS. (259) The method in embodiment (252), wherein the trusted source or storage means 
comprises data received from communicating with a Sen/er via a secure session. (260) The method in 
embodiment (252), wherein the Client's keys and certificate chain are fixed values shared ,by more than 
one Client system, and the Entity authenticates the Client based on this Resource Tag. (261) The 
method in embodiment (252), wherein the Client's keys and certificate chain are unique to this client, and 
the Entity authenticates the Client using this unique certificate and/or using a Resource Tag which was 
included in the message received from the Entity to which this session is a response. (262) The method 
in embodiment (252). wherein the Entity authenticates the Client using the certificate and/or using a 
Resource Tag which was included in the message received from the Entity, to which this session is a 
response. (263) The method In embodiment (252), wherein the verifying by the Entity, further includes 
optionally verifying the Resource Tag that is included in the Data portion of the received message. (264) 
The method in embodiment (252). wherein the secure unidirectional message protocol comprises using 
the Signed-lnside-Enveloped-Data cryptographic primitive. (265) The method in embodiment 2 (252), 
wherein the Enfity comprises a Merchant. 

(266) A method for communicating a secure unidirectional response message from a Client 
that is sending a secure response message to the Entity In order to respond to a message from the 
Entity, the method comprising the steps of: extracting, by the Client, infomiation including the Entity's 
public key and matching destination address and the Client's public and private key and certificate chain 
from one or more trusted source; and using, by the Client, the extracted information to create a secure 
unidirectional message to the Entity using the a secure unidirectional message protocol, a data portion of 
the secure unidirectional message containing a resource tag that was included in the message received 
from the Entity to which the secure unidirectional message is a response. 

(267) The method in embodiment (266), further comprising sending the secure unidirectional 
message to the entity. (268) The method in embodiment (267). further comprising verifying, by the 
Entity, the Client's certificate chain. (269) The method of embodiment (266). wherein the trusted source 
or storage means comprises a Compact Certificate as explained eariier, or chain of Compact Certificates 
leading to a trusted root public key. (270) The method of embodiment (252), wherein the trusted source 
or storage means comprises a Compact Certificate as explained eariier, or chain of Compact Certificates 
leading to a trusted root public key. 



1.8.10 Other Embodiments 




wo 02/10962 



PCT/USOl/23713 



81 



10 



15 



20 



25 



30 



35 



We first provide a top-level descriptiow ui ouine of the key technology components of the 
invention called a story or other content and systems and methods for authoring, communicating, 
securing, and rendering such content, along with a description of some of the advantages provided by 
stories. This description is then followed by several sections that describe the manner in which certain 
functional and procedural capabilities and/or advantages are achieved in the inventive system. Section 
headers when provided are provided merely as a convenience to the reader as a guide to portions of the 
description addressing certain aspects of the invention; however, it wiJJ be appreciated that various 
aspects of the invention are described throughout the description and certain aspects are best described 
in several portions of the description rather than in a single portion to that relationships may be better 
understood. Therefore, the description should be considered as a whole with respect to the 
characteristics or attributes of any structure, system, device, method, procedure, computer program, or 
other aspect of the invention. 

For purposes of an Initial working definition and in somewhat simplified terms, a story as the 
term is used in this description generally refers to a single, author once, play everywhere file or 
data/command structure that is interactive either on-line or off-line and that can be used to distribute rich 
multimedia messages or other rich-media content to all e-mail enabled clients. (More complete as well 
as alternative definitions of "stories" are described elsewhere in the detailed description.) Next, aspects 
of an exemplary system to generate, transfer and play stories, according to one embodiment of the 
present Invention, are described. Once this top level description has been provided, the detailed 
operation of the respective business or operating models and methods of the invention will be described 
and more readily understood. 

The term e-mail is used here because it represents a form of electronic communicafion that is 
known in the art. but it will be appreciated that the inventive system, method, software, business and 
operating model pertain to much more than what is normally envisioned for conventional e-mail systems 
and methodologies. The inventive e-mail enhancement, extension, or replacement contemplates some 
generalized electronic content that is directed to one, a plurality, or a multitude of recipients. 

■ Recall that in greatly simplified terms, a story is a single, author once, play everywhere file or 
data/command structure that is interactive either on-line or off-line that can be used to distribute rich 
multimedia messages or other rich-media content to all e-mail enabled clients. Stories can be used to 
distribute and coordinate e-commerce transactions, order fulfillment, meeting scheduling, 
advertisements, catalog item descriptions, customized catalogs and brochures, holiday greeting cards, 
electronic storybooks, driving directions, vacation slide and picture shows, surveys, real-estate walk 
throughs, medical care pamphlets, phamiaceutical information pamphlets, recipes, business 
presentations, party invitations, instructional manuals, entertainment and numerous other applications, 
particulariy where the message consists of more than merely a text or symbolic message. Several of 
such exemplary applications include, for example, surveys, forms, contracts. 

Story content creation is advantageously automated and dynamically adaptive, because a story 
is optimized over a plurality of variables to selectively communicate elements of an e-mail message to e- 
mail client devices and users. Such variables include, for example, client device hardware capabilities, 
network connection characteristics and user preferences. This is accomplished from a standpoint, for 
example, of CPU speed, display type, screen size, the existence of and or attributes of audio and/or 
video capabilities, data scalability, language, use of or not use of audio or visual content, nominal speed 
or bandwidth of all of the communication links and protocols, and the like. 
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In preferred though not all embodiments, a Tina! story is not generated until substantially all 
such relevant e-mail client information is detenmined during the time of connection of the client device. In 
a sense, the system and procedure of the present invention is contrary to other prevailing trends (which 
attempt to pre-fonm content so that is available as eariy as possible) in that StoryMail actually delays 
5 composition of the final message until it is ready to be received. For example, if it is determined 

that an e-mail client cannot view motion video but can display text and play audio, the story will be 
generated such that it does not include motion video, but rather textual and/or audio elements that 
communicate the intent of the e-mail publisher within the capabilities of the e-mail client. 

In yet another example, even though a client device may be capable of receiving and rendering 
10 a very rich message. If the then prevailing communication channel Is only supporting low-speed or low- 
bandwidth communication, a story is generated such that the ricbnes5.of ihe.fnessage is r^duced-so that 
the message is optimized for the attributes of the client device and the user preferences at that moment 
in time. 

Sometimes, the message may be optimized or nearly optimized to be received within any time 
15 constraints that may be imposed; however, unlike systems and methods that must satisfy real-time or 
near real time constraints, the story need not provide real-time delivery, as it is intended to be a 
messaging and communication system, method, and operating model, rather than a real-time rich-media 
broadcast or streaming system. In this regard, a story is a fully aware e-mail message that is optimized 
to substantially deliver the intent of an e-mail publisher across the broad range of all e-mail client 
20 architectures. 

A story may further be optimized to comply with a predefined set of user defined preferences, 
making each story beneficially configurable for physically challenged individuals. This Is because for 
every logical element (either text, sound, images, video, or the like logical elements) there is an 
underlying textual description of that logical element. In addition, there are contextual logical elements 
25 included as may be needed to insure that the intent of the message may be easily understood in text or 
audio only representations. An example of such contextual logical element would be a text element that 
provides an overview of what is on the screen to be rendered as text or audio In cases where some or all 
of the screen's visual elements can not be seen by the recipient on the receiving device. 

In a prefen-ed embodiment, all logical elements have corresponding semantic infomnation so 
30 that it can be known or determined which elements to use under varying circumstances. For example, 
the aforementioned contextual logical text element would have associated semanfic flags packaged with 
it inside a story indicating that the element contains text providing an overview of the elements displayed 
on a screen for use when it is known that the recipient cannot view the screen. Such a case might be 
when a story player application is used to render and control a rich media message for someone whose 
35 only means of communication to the rich media message playing application is over a voice only 
telephone connection. In other embodiments, an audio representation, either recorded or generated by a 
text to speech engine may provide audio infomnation backup - contextual infonnation. or semantic 
information rather than text In this manner an individual can read text and the text can automatically be 
articulated for a blind individual. 

40 In one embodiment, the inventive system, method, and operating model are designed to 

interface with a peripheral device that generates a Braille or other tactilely sensible indica corresponding 
to the story. This peripheral device may either be linked to a conventional client device, such as a 
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computer, or integrated within the device. Using semantics, there is always an alternative sensory 
presentation mode. 

Stories are self contained and lightweight, meaning that stories have relatively small memory 
and processor requirements and can be played on client devices the types and sophistication of which 
5 are virtually unlimited. A story is self contained because in at least one embodiment, a story is actually a 
single file that is made up of a number of component logical files. Each component file encapsulates, for 
example, one or more of computer program instructions, control information, user input forms, validation 
procedures, and/or multimedia content Each component logical file is respectively compressed and all 
of the component logical files are combined, packaged, compressed again to generate the single story 
10 file. 

A story -Is 4ightweight -not'Only -because when -it is executed, or played, a stor/s contents are 
selectively and sequentially decompressed. But also because a story only Includes those elements that 
are optimized and compatible with the e-mail client's hardware capabilities and network connection 
characteristics, making stories lightweight (thin) enough to run on inexpensive information appliances or 
15 other devices. In fact one of the great advantages of the StoryMall system Is its ability to support the 
hardware capabilities and networic connection characteristics of virtually any client device. In fact, a story 
can even be played on a client device that is not multimedia enabled because a story always has a set of 
text that describes, or narrates any non-textual element of the story. The story also contains semantic 
flags indicating the circumstances mder which to render all text or non-textual elements. ; 

20 A story according to embodiments of the invention is reliable because it is played in a novel 

run-time environment, wherein, unlike an HTML Web page where there may be links to other servers to 
provide further information, a story is a self-contained unit. The novel mn-tlme environment is largely 
detemiinistic because of the self contained cooperative multitasking system employed in the playback 
engine and the explicit input buffer coding instructions with fixed size memory buffers. So if it runs 

25 correctly one time on one device it will almost certainly run correctly most of the time on all devices. 

A run-time environment such as this is more reliable than, for example a pre-emptive 
multitasking system using the device's threading mechanism, or an architecture which allows for variable 
size buffering. Also in story messaging all content is present on the target device before the story is run. 
So unreliable connections to other devices or content on a network are unnecessary and part of a story 
30 cannot be missing since they are packaged together in a single logical file. 

Because a story is self contained and reliable, creation of story content can be completely 
automated, devices made today will be able to handle future content without upgrades. This provides for 
intelligent content spedfic scaling and compression, it is easily stored and exchanged between e-mai) 
clients as a single file, for example, that can be: embedded in a Web page, embedded in an e-mail 
35 attachment, stored in ROM. streamed from a sender, run as a MIME type, run as an ActiveX component, 
run as a plug-in. and/or run as an ActiveX component. 

Most story enabled d^evices will mn or play a story in a window, or in a non-windowed operating 
environment such as occur on in basic or thin client devices, on a display device screen. Such devices 
include, for example, a desktop computer, notebook computer, personal data assistant (PDAs). 
40 telephone, set-top box, movie marquee, informational kiosk, Internet e-mail appliances, billboard, 
microwave oven, point-of-sale displays, gasoline pump, vending machine, instructional appliance, 
automobile display device, global positioning system (GPS), point-of-sale display, and myriad of other 
device types are supported. In fact, a story can even be played on a client device that is not multimedia 
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enabled because preferred embodiments of the inventive story always have a set of text that describes, 
or narrates any non-textual element of the story, along with semantic information describing the role of 
each logical element. In one embodiment, a device may play a story entirely with voice commands and 
automatically articulated responses. 

5 It Is noted that although applicant describes embodiments of the Inventive structure, method, 

computer program, operating model, and structure and organization of content used In or in conjunction 
with other aspects of the invention, the underlying inventive concept and indeed many embodiments of 
the invention do not require all features described here. Many such structures and procedures though 
advantageous and desirable are optional. Including text behind each logical element of the story is a 
10 prefenred embodiment. Therefore, with respect to the structure and content of a story described here, it 
should be understood for example, that not all stories must contain underlying lext .behind each Jogica! 
element of the story. 

These optimizations make a story very flexible, scalable, and powerful. Unlike some 
conventional systems and methods, a story maintains a focus on the intent of the message and 

15 preserves that message intent in spite of its ability to selectively communicate elements to client devices 
and users. For example, in conventional video streaming systems the primary goal has been to maintain 
real-time transmission of the video stream and to relax quality to the point where almost all picture quality 
has been lost if necessary to maintain continuous operation. For an advertiser promoting a high-end 
product, such as example a diamond ring, it is very important to maintain the quality and clarity of the 

20 product image. If the transmitted image(s) of the diamond ring make the ring appear undesirable, the 
entire purpose for the advertisement Is lost. Therefore, attempts should be made to customize 
composition of the message so that where possible the bright high-resolution image of the diamond ring 
is presented to the receiver, and if such presentation is not possible then to provide an alternative 
possibly textual description of the ring which creates the same desire to own product as the bright clear 

25 image would. This particular example realty illustrates the notion of selecting or substituting content to 
maintain the intent all of the StoryMail'"^ message Independent of the device hardware capabilities or 
network connection characteristics and even to some extent independently of user preferences. 

The Inventive structure and method may be applied to on-line auctions as well and provide 
significant benefits here. For example, a story message provides rich product descriptions complete with 
30 BID forms; bid limit exceed notifications providing a bidder a chance to upgrade a bid from a fomi 
embedded in the message without requiring the bidder to go to the action web site; and. bid accepted 
notification with transaction completion automation. 

Traditionally, on-line auctions require composing a product description that may not scale up 
and down depending on the device. Traditional on-line auctions typically require repeated visits the site to 
35 determine if a bid is accepted. Furthermore, traditional on-line auctions generally require further visits to a 
Web site or the placement of a phone call to complete a transaction. 

It can be appreciated that stories can be used at point of sale to provide looping demonstrations and/or 
advertisements of a product. For example, a story can be embedded in read-only-memory (ROM) of 
microwaves, stereos, set top boxes, and the like. Playback of such a story can be in the store that 
40 displays the story 180 enabled product for sale. The manner in which the story is played back may be 
modified by each viewer acconjing to view preferences. For example the underiying content may have 
English. French, Spanish, and Russian audio and text content that may be selected by the viewer. Such 
Input may be buttons on the playback device, a touch screen device, voice input, or other input devices 
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as are known in the art. Additionally, story enabled devices, for example, soda machines, can be 
implemented to play media rich advertisement stories that can be updated using only a phone line to 
upload a different story. The content of such story may be communicated, for example overnight to a 
targe variety of different device types, yet will be playable by all such device types. 
5 There are other exemplary applications for stories, for example, stories can also be used for 

meeting scheduling, advertising, catalog Hern descriptions, holiday greeting cards, electronic storybooks, 
driving directions, vacation slide and picture shows, surveys, real-estate walk throughs, medical care 
pamphlets, phamnaceutical infonmation pamphlets, cooking or production recipes, business 
presentations, instructional manuals, entertainment, and numerous other applications where the 

1 0 message consists of more than merely the text message. 

-We now describe aspects of an inventive next generation e-mail system that is used to 
generate, distribute, and play stories. In one embodiment, a story that Is sent as a message from a 
server to a client device is called StoryMail. Refemng to FIG. 1, there is a block diagram that illustrates 
aspects of an exemplary embodiment of a StoryMail system 300. StoryMail System 300, (also refened to 

15 simply as system 300) is a distributed client/server system with server peering. 

Sender/publisher 310 is connected across I/O interface 312 to user interface 314. 
Sender/publisher 310. for example, can be a general-purpose computer, provides at least a subset of the 
information and content used to generate and transmit a story to sending story server 302. In other 
words, parts of a story may reside on any server anywhere or computer that can be addressed, that is 
20 connected to network 306. In this case, sender/publisher 310 provides links, for example, a Uniform 
Resen/e Locator (URL) address of the document or other resource to be Included in the story. 
Sender/publisher 310 includes a number of components which are described in greater detail below in 
reference to FIG. 2. 

I/O Interface 312 can be any type of I/O interface, for example, a peripheral component 
25 interconnect (PCI) bus interface, a SCSI interface, or the like. Sender/publisher 310 Is also connected 
across I/O interface 308 to network 306. As an alternative to 312, I/O interfaces 308 and 309 can be 
used if information Is passed through networic 306. I/O Interfaces 308 and 309 can be any type of I/O 
interface, for example, a modem connected to a public telephone network, a leased line, or a wireless 
radio wave or optical interface. Networtc 306. for example, can be a local area networic (LAN) or a wide 
30 area network (WAN). 

Network 306 Is connected across I/O interface 304 to sending story server 302. Sending story 
server 302, for example, is a general-purpose computer or device for generating and transmitting stories 
to client devices, such as conventional e-mail sender 332. story enabled client 336. conventional e-mail 
client 340. and story enabled device 344. A greater detailed description including aspects of an 
35 exemplary embodiment of sending story server 302 is provided below in reference to FIG. 4. I/O 
interfaces 304, 308, 309, 324. 326, 330, 334, 338, and 342 can be any type of I/O interface, for example, 
a modem connected to a public telephone network, a leased line, or a wireless radio wave interface. 

In one embodiment, the system of the invention includes receiving story sen/er 328, for 
example, is a general-purpose computer or device for transmitting stories to client devices, such as those 
40 client devices listed above. One difference between receiving story server 328 and sending story server 
302, for example, is that sending story sen/er 302 is able to generate stories and distribute stories, 
whereas receiving story server 328 is not able to generate stories but is able to distribute already 
generated stories. Receiving story server 328 is beneficial because it may contain functionality which 
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can be used to eliminate the need for providing that same functionality in story enabled clients 336 and 
story enabled devices 344. This is advantageous because the computation and/or memory capacity of 
such devices is nomially more limited than that of the servers 328. In addition, since there are likely to 
be many more story enabled clients 336 and story enabled devices 344. the implementation costs are 
lower if the functionality Is contained on the servers 328 rather than on the story enabled clients 336 and 
story enabled devices 344. Examples of such functionality include proxy server functions, placing stories 
into in-boxes, and security features such as decryption, authentication and digital signature verification. 

In one embodiment, network 306 Is connected to conventional e-mail sen/er 332 which is a 
traditional e-mail server used by a number of machines connected to network 306 to distribute and collect 
e-mail messages. Procedures for a machine to distribute and collect e-mail rnessages are known in the 
art. Conventional e-mail server 332 .provides story messages Xo bo\U .non-^tory enabled .devices, for 
example, conventional e-mail client 340. as well as story enabled clients and devices, for example, story 
enabled client 336 and story enabled device 344. As will be described in greater detail below, the 
presence of conventional e-mail server 332 is not necessary for story enabled client 336 or story enabled 
device 344 to receive stories. However, the presence of conventional e-mail sen/er 332 is necessary for 
conventional e-mail client 340 to receive a story enabled message. In one embodiment, a story enabled 
message will not include a story, but rather includes information indicating that a richer message, or story 
underiies the story enabled message. This embodiment is described in greater detail below in reference 
to FIG. 6 and FIG. 7. 

Story enabled client 336 includes, for example, computer program applications and data for 
playing a story received from a story server, for example, sending story server 302 and/or receiving story 
sen/er 328. Story enabled client 336 is, for example, a general-purpose computer, a notebook 
computer, a personal digital assistant, a telephone, a set-top box, an Internet e-mail appliance, a movie 
marquee, an informational kiosk, a billboard, a gasoline pump, a vending machine, an instructional 
appliance, an automobile display device, a GPS system, a point-of-sale display, and the like. Story 
enabled client 336 starts life as a conventional email dient 340. It becomes story email client 336 when 
story enabling software is downloaded or Installed from a networi< or direct connection to another device. 
Story device 344 has the story enabling software built In by the manufacturer. 

Conventional e-mail client 340 is a typical e-mail client, for example, a general-purpose 
computer that is not able to execute, or play a story. However, conventional e-mail client 340 is able' to 
receive e-mail messages that include information indicating that a richer content message, or story is 
behind the e-mail message. In one embodiment, besides including infomnation that a story underiies the 
e-mail message, the e-mail also includes, for example, an e-mail message that delivers the publisher's 
310 message In a traditional e-mail format. Such traditional e-mail formats include, for example, text. 
HTML and/or attachments. Such an embodiment is advantageous for a number of reasons. For 
example, while conventional e-mail client 340 will not be able to play a story without upgrading its 
computer program applications, it will still receh/e content that corresponds to publisher's 31 0 message or 
promotion. Additionally, the message can be fonwarded to another e-mail client device, for example, 
story enabled client 336, wherein the richer message will be available to the other client device. 

In one embodiment, conventional e-mail client 340 upgrades its capabilities to enable it to play 
a story. In a situation where conventional e-mail client 340 upgrades its computer program applications 
to enable it to play a stoiy, conventional e-mail client 340 would become a story enabled client 336. In 
one embodiment, conventional e-mail client 340 can perform such upgrades, for example, by 




wo 02/10962 PCT/USOl/23713 

85 

downloading a story player from a web site or an FTP site, or by loading a story player from a CD-ROM 
or diskette. In a preferred embodiment, conventional email client 340 upgrades by responding to a link 
provided in the email message, wherein the link points to a download image or site. 

Story enabled device 344 is manufactured with story functionality built in. Such devices include 
5 networked household appliances, cell phones, smart cards and pagers. 

Each client device 336. 340, and 344 includes, for example, an e-mail program (not shown) 
that respectively receives and/or delivers e-mail respectively from/to one machine connected to network 
306 from/to another machine connected to network 306. To fadlitate such reception and delivery, an 
email program utilizes Intemet email protocols, for example, known POPS or MAP protocols. In one 
10 embodiment, such an e-mail program is a conventional e-mail program, such as Microsoft Outlook 
Express®. \n anotherembodiment.the &'mail prograTn'is a special e-mail program designed spedficalty 
to receive and/or transmit stories to another client or device aaoss network 306. 

Referring to FIG. 2, there is a block diagram that illustrates aspects of an exemplary 
sender/publisher 310, according to one embodiment of the present invention. Sender/publisher 310 
15 includes processor 142 connected across local bus 144 to memory 146. Processor 142 is used to 
execute computer program applications 148 and fetch data 150 from memory 146. Local bus 144 can be 
any type of bus, for example a peripheral component interconnect (PCI) bus, as long as local bus 144 
has a set of signal lines that can be used by processor 142 to transfer information respectively to and 
from memory 146. 

20 Data 150 includes, for example, database 152 representing any combinations of textual 

infonnation, motion video, audio, forms, automation scripts, a story recipient list and any other message 
content, communication, or the like, that may be sent in an electronic format A form can be any type of 
form or document, for example, a purchase order forni, a registration or an application form. Typically' a 
form provides an Inquiry and provides some instructions for answering or responding to the inquiry. 

25 Database 152 is a standard database that can be created and managed using any of a number of 
conventional database tools. 

In one embodiment, database 152 includes, for example, textual descriptions in more than one 
language, of a number of products, digital or binary Images of the products, motion videos to advertise 
and illustrate the products, product identification numbers, audio dips to advertise and describe the 
30 products, and/or recipient information, such as a list of e-mail addresses to which to send a story. 
Desirably, for every non-textual item of data in database 152, a textual description of that item of data is 
available. For example, if database 152 includes a color photo of a particular toy, there will be a 
corresponding text description of that toy. 

In a preferred embodiment, a digital or binary image can have a set of scaled and color depth 
35 versions of the binary Image, For example, if database 152 includes a 300 dots per inch (dpi) 24-bit color 
binary image of the cover of a book, database 152 will also include a 1-bit black and white representation 
of the image, an 8-bit and 16-bit gray scale representation of the image, and various resolutions of each 
of the resolutions, such as 100 bit and 200 bit resolutions. 

In a preferred embodiment, scaling of logical story elements can occur at three different times: 
40 (1) when generating the message; (2) when executing the procedural elements of the message; and, (3) 
while the message elements are being rendered by the hardware specific functions (e.g., the HAL 
functions) that connect a portable story playback engine to actual device specific hardware. 
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For example, in one preferred embodiment, sending story sen/er (see FIG. 1) scales the story 
content when generating the message to conform to the story enabled clients' 336 hardware capabilities, 
network connection characteristics, and specified user preferences at the time that such infonnation are 
detennined (see FIG. 7, step 228). In yet another prefen^ed embodiment, story player 194 (see FIG. 5) 
5 scales the content of the story when the procedural elements of the story are executed, or played. For 
example, a digital image may be scaled from 300 dpi to 200 dpi while the digital image is being 
displayed. In yet another embodiment, story player's 194 HAL may scale the story to fit into a particular 
display screen size and/or add scroll bars to the display so that an entire story can be viewed. 

Document 154 is author once information created by using a number of structured document 
10 languages, for example, extensible markup language (XML), and Excel spreadsheet fomriat, database 
records extracted with SQL. and alike. Jn. a prefened embodiment. Document 154. js.an . XML document 
. Document 154 can be created In a number of different ways. For example. Document 154 can be 
created using any of a number of known XML Editors, Word processors, device drivers, and the like. 

Refemng to FIG. 3, there is a block diagram that illustrates aspects of an exemplary Document 
15 154 used by sending story server 302 (see FIG. 1) to generate a message/promotional story 180. 
according to one embodiment of the invention, FIG. 3 uses a structured document syntax pseudocode 
that does not confonn to any one particular stmctured document syntax, but is rather used only for 
purposes of illustrating the invention. In a prefened embodiment. XML document 154 includes a tag that 
identifies a particular storyteller 172 (see FIG. 4) and a unique identifying attribute of the particular 
20 storyteller 172. 

The pseudocode describes a set of tags that each respectively In turn describes an element, 
wherein each tag is followed by an equals sign ("=^ and a corresponding textual description that defines 
some other property of the element The property can be either an absolute description string, an 
embedded document, or a string that includes a URL and a document name. If a descriptive property is 
25 a URL and document name, the URL will be accessed and the Identified document downloaded when 
document 154 is parsed by story sen/er 302 (see FIG. 4) during one time processing of document 154, 
as described In greater detail below in reference to FIG. 4. 

Line 400 includes a tag that identifies a "STORYTELLER ID" element, which is followed by an 
attribute of the element, "ecoupon 5". "Ecoupon 5" identifies a unique storyteller 172 (see FfG. 4) in story 
30 sen/er 302 (see FIG. 1). In this example, ecoupon 5 storyteller 172 will be used to generate a form and a 
user interface to be used by a sender/publisher 310 (see FIG. 1) to generate and distribute one or more 
ecoupon stories 180 (see FIG. 4) to distribute to one or more customers as dictated by sender/publisher 
310 (see FIG. 1). Storytellers 172 are described In greater detail below In reference to FIG. 4. 

Line 402 includes a tag that identifies a "PRODUCT VIDEO" element, which is followed by an 
35 attribute of the element that identifies a particular MPEG motion video, 
"BOOKRETAILER.COM\PROMO24VlSBN12980.MPG'' that is to be distributed in a story 180 (see FIG. 
4). In this example, the motion video is identified by a URL link to the author's database 152 (see FIG. 
2) and a corresponding motion video document 

Lines 404 and 406 include tags that identify respective product picture elements, wherein each 
40 respective tag identifies a specific binary image (or other digital image or graphic) that has a respective 
different pixel resolution. For example, line 404 includes a tag that identifies a "PRODUCT PICTURE 
lOODPr element, which is followed by an attribute of the element that identifies a 100 dpi binary image. 
"BOOKRETAILER.COM\PROMO24\ISBNL2980 100DPI.JPG'. Whereas, line 406 includes a tag that 
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identifies a "PRODUCT PICTURE 200DPr element, which is followed by an attribute of the element that 
identifies a 200 dpi binary image, *BOOKRETAILER.COM\PROMO24\ISBNI^980 200DPf.JPG''. Both 
binary image files are identified by respective URL links to the author's database 152 (see FIG. 2) and a 
con-esponding JPEG document. 

5 Lines 408 and 410 include tags that identify respective audio file elements, wherein each 

respective tag identifies a specific audio file that is implemented In a different language. In particular, line 
408 includes a tag that identifies a "PRODUCT AUDIO ENGLISH" element, which is followed by an 
attribute of the element that identifies an audio file that is implemented in English 
CBOOKRETAlLER.COM\PROMO24\ISBNL2980 ENG.WANT). Whereas, line 410 includes a tag that 
10 identifies a "PRODUCT AUDIO SPANISH" element, which is followed by an attribute of the element that 
identifies an audio file that is implemented in Spanish jC'BDQKRETAILER.COJVnRROJWO24MSBNL2980 
SPAN.WAV"). Both audio files are identified by respective URL links to the author's database 152 (see 
FIG. 2) and a con'esponding WAV document These tags are merely illustrative and not exhaustive of 
the type of tags, file elements, and/or identifiers that may be used. 

15 Lines 412 through 418 include tags that identify respective text file elements, wherejn each 

respective tag identifies a specific text file with analogous intent written in a different language. In 
• particular, line 412 includes a tag that identifies a "PRODUCT TEXT ENGLISH" element, which is 
followed by an attribute of the element that identifies an ASCII text file that is implemented in English 
CBOOKRETAILER.CQM\PROMO24\ISBNL2980 ENG.TXT*). Whereas, line 414 includes a tag that 

20 identifies a "PRODUCT TEXT MANDARIN" element, which Is followed by an attribute of the element that 
identifies a Unicode text file that is written in Mandarin (''BOOKRETAILER.COM\PROM024\1SBNL2980 
MANDARIN.UNI") and the like. Each text file of these examples is identified by respective URL links to 
the authors database 152 and a corresponding text or Unicode document. 

Line 420 includes a tag that identifies a respective "PRODUCT SKU" (stocking unit) number 
25 element, which is followed by an attribute of the element, in particular an absolute value that identifies the 
promotion's targeted product's SKU. Line 422 includes a tag that identifies a respective "FULFILLMENT 
SERVER URL" element, which is followed by an attribute of the element, in particular a URL for the 
promotion's fulfillment server. A procedure for using such a fulfillment server is described in greater 
detail below in reference to FIG. 7. 

30 Lines 424 - 428 includes tags that identify story 180 (see FIG. 4) recipient or customer 

information. For example. Line 424 includes a tag that identifies a "FIRST NAME" element, which is 
followed by an attribute of the element, In particular, the name "DAVE". Line 426 includes a tag that 
Identifies an "EMAIL^. ADDRESS" element, which is followed by an attribute of the element, in particular 
an e-mail address, such as for example to "someone @ somewhere . com" that identifies the recipient's 

35 e-mail address, and the like. 

Line 430 includes a tag that identifies a respective "MASTERDATABASE ID" that is used by 
sending story server 302 (see FiG. 1) to Identify those portions of a master parts database to use for a 
particular message/promotion. In one embodiment of the invention, sending story server 302 returns the 
message/promotion ID 430 to sender/publisher 310 (see FIG. 1), such that the message/promotion ID 
40 430 is unique to any other message/promotion IDs in a master parts database. Such a 
message/promotion ID can be used by publisher 310 to modify and/or delete the information that 
corresponds to a message/promotion in a con-esponding master parts database. Such a master parts 
database is described in greater detail below in reference to FIG. 4. In one embodiment, such a 




wo 02/10962 PCTAJSOl/23713 

90 

message/promotion ID is used by publisher 3l0 to send a corresponding message/promotion to 
recipients in batches, each batch job referencing the message/promotion ID. 

It can be appreciated that document 154 can include any number of user defined elements and 
respective attributes of such defined elements. As will be discussed in greater detail below, recipient 
5 infonnation, for example, that information illustrated in lines 424-428. can be supplied to sending story 
sender 302 (see FIG. 1 and FIG. 4) at any time through a number of different mechanisms. 

In a preferred embodiment, for at least a subset of the non-textual data in Document 154, a 
textual description of that non-textual data is identified in Document 1 54. In yet another embodiment, for 
every textual description, there Is a conresponding text description identified in more than one language, 

10 for example, English and Spanish text descriptions. In yet another emt>odiment, if Document 154 
ident'ifies-an audid'fife-in'a'particular language. Document 154 diso identifies other audio files that have 
analogous content to the audio file in different languages. It may also provide a textual transcription 
and/or a summary of the audio files for presentation when the receiving device does not provide audio 
playback or the recipient chooses not to receive the content in an audio format. In yet another 

15 embodiment, if document 154 Includes a binary image (either embedded or via a URL) having a 
particular resolution, document 154 also includes other resolutions of the binary image. Including such 
multiple resolutions of a binary image is beneficial for the reasons discussed in greater detail above. 
Furthemnore, not only may the binary or digital images be different resolution, they may be different types 
of files, such as for example, a bit-mapped image (*.bmp), a TIFF format image (*.tif), a JPEG 

20 compressed image (*.jpg), or the like. 

Applications 148 includes, for example, one or more of the following computer program 
applications: (a) a Web browser (not shown) such as Netscape Navigator<g> or Microsoft Internet 
ExplorertS), for accessing a Web page served from sending story server 302; (b) any of a number of 
commercially available XML Editors for creating document 1 54, Other applications may also be stored or 
25 provided, for example, multimedia authoring systems, story mail applications, templates for other 
applications such as spreadsheets, multimedia and/or XML database managers. 

Sender/publisher 310 also Includes, for example, a database stored or referenced which 
includes at least a subset of the content necessary to represent the information and data in a story. 

Refemng to FIG. 4, there Is a block diagram that illustrates aspects of an exemplary sending 
30 story server 302, according to one embodiment of the invention. Server 302, includes processor 162 
connected across local bus 164 to memory 166. Processor 162 is used to execute computer program 
applications 168 and fetch infomnation from data 170. Local bus 164 can be any type of bus, for 
example, a peripheral component interconnect (PCI) bus, as long as local bus 164 has a set of signal 
lines that can be used by processor 1 62 to transfer Infomnation respectfully to and from memory 1 66. 

35 There may be any number of sending story servers 302 and receiving story servers 328 (see 

FIG. 1). In such a system 300, each server 302 and 328 will respectively communicate directly with 
another respective server 302 and 328, or with one or more conventional e-mail servers 332 (see FIG. 1) 
using one or more communication protocols, for example, SMTP/ESMTP/MIME/HTTP communication 
protocols. (For purposes of this description, wherever SMTP Is used. ESMTP is also applicable). 

40 Sending story sen/er 302, using information that is provided both by sender 302 and story enabled client 
336. generates and distributes stories 180 as e-mail, or StoryMail. Such information can be provided to 
sending story sen/er 302 through a number of different mechanisms. For example, the information may 
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be provided if sender/publisher 310 (see FIG. 1) senas aocument 1 54 across I/O interface 308 to server 
302. (The contents of document 154 are described in greater detail above). 

In one embodiment, sending story server 302 also serves one or more documents on the 
World Wide Web (WWW) identified by a unique Uniform Resource Locator (URL) that allows a user of 
sender 302 to input information through network 306 into server 302 that will be translated into document 
154. There are a number of known computer programs that are used to translate information into a 
structured file format, for example. XML. Aspects of an exemplary procedure used by sending story 
server 302, sender/publisher 310, and story enabled client 336 to exchange information to generate, 
distribute and play story 180 are described in greater detail below in reference to FIG. 5 and FIG. 6. 

Applications 168 includes, for example, composition engine 170, storyteller 172, e-mail engine 
•1-73, and -other -applications 174. Each of -these appficatioTis 168, and in particular, composition engine 
170, storyteller 172, and e-mail engine 173 work cooperatively to build story 180. Composition engine 
170 provides, for example, a framework of data structures, a run-time model, a compiler, an application 
programming interface (API), and conventions for building an almost endless variety of different stories 
180 that conform to a story run-time model. The story run-time model is designed such that a story 
playback engine on a story client can be simple in complexity and fast The run time model provides a 
lightweight cooperative multitasking multimedia and central application framework. (Such a run-time 
model described in greater detail below). 

Composition engine 170 passes infonnation provided by sender/publisher 310 (see FIG. 1), 
such that the information is represented in a procedural data format that is not a flat data format. 
Advantageously the technologies are designed for the procedural content to be fully computer-generated, 
that is, without manual user inten/ention. (Manual building is possible but it is not prefenred or even 
desirable.) In one embodiment of the invention, industry standard XML interfaces are used to 
completely automate one time processing of such provided information, such that existing authoring tools 
and content formats, for example, JPEG. AVI, MPEG, MP3. and the like, are supported through a simple 
yet powerful transcoding mechanism of the invention. 

To accomplish this, composition engine 170 performs one-time processing of the provided 
information such that the resulting procedural format of the Information for example, is a sequenced set 
of data, for example, computer program instructions or operation codes (op codes), control information, 
parameters and media parts. The phrase "sequenced set" means that the data is organized into a time 
line that dictates the rendering and navigational characteristics of a story 180. This time line may include 
procedural tests, branches, jumps, conditional statements, and the like so that the rendering may not 
ultimately be perfectly linear or sequential. 

For example, such a sequenced set of data may include a first set of computer program 
instructions to display a graphic. The first set of computer program instructions is followed, for example, 
data used by a story player to display navigational buttons on the story receiving devices display. 
Desirably, each media part is assigned an absolute priority that controls when and If a particular media 
part will be rendered. - 

The computer program instructions specify operations to render graphical user interface (GUI) 
components, media parts, and provide procedural control to user interaction with the GUI components. 
The control information, for example, provides offsets Into the sequenced set of data that indicate where 
particular media parts are located. In one embodiment, control information also provides a set of 
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semantics and flags for each logical element of a story to maintain the intent of the message on all 
receiving devices. 

In yet another embodiment, control infonnation, for example, includes an array of hot spots, 
one hot spot for every logical element. Such logical elements include, for example, button controls, text 
5 input controls, bitmaps, areas wherein motion video will be displayed, text boxes, decorative elements, 
and the like. Each hot spot is associated with a rectangular region of the receiving devices* screen 
display (if one is available). The rectangular region facilitates event identification. Such event 
identificdtion is associated with user instantiated events. For example, if a user selects, for example, with 
a mouse device, a region identified by the rectangle assodated with a particular hotspot, the operating 
10 system will generate a button dick event which, as will be descnbed in greater detail below is processed 
by a stoiy.player In the context of the logical element .selected. 

Each hot spot Is further identified as being either active or inactive. An adive hotspot is a 
hotspot that generates an event when a user selects a region within the rectangular area associated with 
the hotspot. In contrast, an inactive hotspot does not generate an event when a user selects a region 
1 5 within the redangular area. 

In a preferred embodiment, each hotspot area is implemented as a bitmap. Aspeds of an 
exemplary procedure for a story player to use an anray of hot spots to play a story is described in greater 
detail below in reference to FIG. 6. 

In addition to areas the hotspot array may also contain semantic and alternative rendering 
20 element identifiers (ids) for logical elements other than areas. For example, a hotspof s semantic flags 
may indicate that there is overview test available that describes the overall purpose of a screen of • 
information, and the hotspot may also contain the id of the overview text element of the story. 

Aspects of control and control information indude memory buffer creation, memory buffer 
loading, branching, condition or searching, layout, subroutines, linkage between different sequences of 
25 instrudions, decompression and compression and file packaging, e-mail access for sending messages, 
requests for subfiles. 

In one embodiment, each opcode, parameter and offset is a 32-bit word. This is beneficial for 
a number of reasons. For example, portability and adaptability are supported by the use of fixed size 32- 
bit words. A 32-bit fixed size word is advantageously used for representing a large dynamic range of 
30 value and is highly compressible because both instructions and parameters are designed to have mostly 
small integer values. The fixed size makes things very scalable and processor words are always aligned 
along the word boundary. 

Because of this suitably chosen fixed size, the playback code, or the story 180 is also small 
and reusable. Parameters and opcodes can be processed by the same code and operation, for example, 
35 addition operations can be performed without the need for size conversion of the code. An additional 
advantage is that the opcodes and data are aligned in memory for fast access. Aspeds of an exemplary 
procedure to use such a procedural data layout to play story 180 are described In greater detail below in 
reference to FIG. 5 and FIG. 6. 

Such one-time processed information is stored by composition engine 170 as a set of master 
40 parts data into master parts database 178. Desirably, each set of master parts data is identified by a 
unique identifier that can later be used by sender/publisher 310 to access, modify, and delete the 
contents of a particular set of master parts data, in master parts database 1 78. The set of master parts 
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data can be used by sender/publisher 31 0 (see FIG. 1 and FIG. 2) to generate and distribute any number 
of stories 180 to targeted e>maii enabled clients. 

In one embodiment, composition engine 170 is eminently portable, meaning that it may also be 
embedded in other devices besides sending story server 302. For example, composition engine 170 
5 may be embedded, for example, into a digital camera. A single global data structure allows the 
implementation of composition engine 170 code as a set of C++ objects, composition engine 170 code is 
reusable and can be instantiated more than one time. An additional advantage of this is that applications 
including composition engine 170 will be easy to build. Furthermore sizes of all program variables are 
explicitly defined and there is built-in support for little-endian and big-endian systems. A thin hardware 
10 extraction layer (HAL) and the ability for all text to be represented in ASCII or Unicode also supports 
portability. In combinatiori, all of these aspects make a ^ory.quickly.and. easily portable.toa Jaroad-range 
of devices, able to handle neariy all the computer programming instruction sets or languages. 

Story teller 172 Includes, for example, a set of programmed logic that will select at least a 
subset of a particular set of master parts data in master parts database 178 to build story 180. Because 

15 composition engine 170 represents the provided information in a procedural format, a story 180 is just 
one big procedural language/data/environment. In a preferred embodiment, a story 180 is part of the 
same procedural language including the content, decompression, rendering, layout, hotspot responses 
and navigation. In some aspects, a story 180 may be viewed as a self-contained ultra-low overhead 
multi-threaded run-time system. For example, a story 180 generates video frames by executing 

20 sequences of instructions. This allows for mixing of different video decompre$sk>n/reconstnjction 
algorithms within a single frame. For example, a motion compensation vector equivalent for a whole 
frame can be applied using a single instruction which moves rectangular parts of one picture into another. 

In one embodiment, storyteller 172 builds a story 180 from the master parts database 178 in 
response to a message from StoryMail enabled client 336 (see FIGS. 1 and 4). (Such a message is 

25 described in greater detail below in reference to FIGS. 5 and 6). In this embodiment, the message will 
include a unique identifier, such as the unique identifier discussed above, to determine which set of 
master parts data to use to build a story. The particular master parts that a storyteller 172 will select to 
piece together story 180 together depends on the purpose of storyteller 1 72 and the particular hardware 
capabilities, network connection characteristics, and user preferences associated with a targeted story 

30 enabled client 336 (see FIG. 1 and FIG. 4). Aspects of an exemplary procedure to send server 302 such 
capabilities, characteristics, and preferences are described in greater detail below in reference to FIG. 5 
and FIG. 6, 

The purpose of storyteller 172 can include any one of the exemplary applications of a story 180 
that were discussed in greater detail above or other purposes. In one embodiment, sending story server 
35 302 includes any number of pre-configured storytellers 172, wherein each storyteller 172 will have a 
unique such purpose. For example, a first storyteller 172-1 may be used to build an e-coupon story 180, 
a second storyteller 172-2 may be used to build a parts catalog story 180, and the like. 

In yet another embodiment, the invention contemplates that sending story server 302 will serve 
a Web page interface (not shown) whereby publisher/sender 310 creates and modrfies storytellers 172. 
40 For example, in one embodiment, such a Web interface provides a set of button controls that when 
selected by a user allows the user to: (1) add logical story elements, for exanfiple, an MPEG file, to 
master parts database 178; (2) select portions of such logical story elements, for example, a user selects 
a particular picture and a particular video to include in a story 180; (3) specify the dimensions of portions 
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of the story, for example, a user may specify that the dimensions of a particular sequence of logical story 
elements are to be of a particular width and height; (4) order the logical story elements on a time line, and 
take into consideration any user navigation; and, (5) define .a set of templates, wherein a particular 
template specifies, for example, the particular operating parameters and rules used to scale the logical 
story elements to optimally play on a particular story enabled dient 336 (see FIG. 1). 

E-mail engine 173 is used to both send and receive e-mail respectively to/from 
sender/publisher 310, story enabled client 336 and conventional e-mail client 340. Conventional e-mail 
engines are known in the art of internet e-mail messaging. Aspects of such e-mail messages are 
discussed in greater detail below in reference to FIG. 5 and FIG. 6. 

Referring to FIG. 5, there is a block diagram that illustrates aspects of an exemplary story 
enabled -client 336 (client 336), -according io t)ne embodiment of the present Invention. Client 33f6 
receives and plays stories 180. Client 336 can also fonward story 180 to other e-mail enabled clients, for 
example, another story enabled client 336 and/or conventional e-mail client 340 (see FIG. 1). To 
accomplish these tasks, client 336 includes processor 184 connected across local bus 186 to memory 
188. Processor 184 is used to execute computer program applications 190 and fetch data 198 from 
memory 188. Local bus 186 can be any type of bus, for example, a peripheral component interconnect 
(PCI) bus, as long as local bus 186 has a set of signal lines that can be used by processor 184 to transfer 
infbmnation respectfully to and from memory 188. 

Data 198 includes, for example, e-mail message 200, which is sent to story enabled client 336 
by sending story server 302 (see FIG. 1). Aspects of an exemplary procedure for sending story enabled 
client 336 e-mail message 200 are described in greater detail below in reference to FiG. 5 and FIG. 6. In 
one embodiment, e-mail message 200 includes, for example, novel story e-mail, which indicates to story 
enabled client 336 that a richer content story 180 is behind e-mail message 200. Story enabled client 
336 receives a mail message 200 before it receives story 180. As will be described in greater detail 
below in reference to FIG. 5 and FIG. 6, in a preferred embodiment of the invention, story 180 is only 
received by story enabled client 336 after story enabled client 336 collects its e-mail from an e-mail 
sen/er, for example, conventional e-mail server 332 (see FIG. 1). 

In one embodiment, story header 201 includes, for example, story teller ID 202, data set ID 
204, and a URL 206. Story teller ID 202 identifies a particular story teller 172 (see FIG.4) used by 
sending story server 302 (see FIG. 1) to build story 180. Aspects of exemplary procedure for sending 
story server 302 to build story 180 are described in greater detail above in reference to FIG. 2, FIG. 5 and 
FIG. 6. 

Data set ID 204 is used to Identify a data set that conresponds to at least a subset of the 
Infomiation in master parts database 178 (see FIG. 4) that will be used by sending story sen/er 302 to 
generate story 180. URL 206 identifies the URL of the particular sending story server 302 that sent client 
336 e-mail message 200. Although a conventional mandatory return path e-mail header (not shown) 
may also identify the particular story server 302, the URL information Is beneficial because story 
messages may come from different servers belonging to different service providers or sender/publishers 
310 (see F1G.1). 

Although, embodiments of the invention contemplate that story 180 may be forwarded by story 
enabled client 336 to another device, in a prefen-ed embodiment, story enabled client 336 does not 
fonvard story 180 to another device, but rather e-mail message 200 is forwarded to another device. Such 
other devices include, for example, another story enabled client 336, a conventional e-mail client 340, 
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and/or a story enabled device 344. After a targeted device receives the fonvarded e-mail message 200, 
any corresponding collection request by the targeted device associated with e-mail message 200 is 
redirected to sending story server 302, such that sending story server 302 determines whether the target 
device is story enabled or not 

5 if the targeted device is story enabled, sending story server 302 determines, for example, the 

particular hardware characteristics, networic connection characteristics, and any user preferences 
associated with the targeted device before sending story 180 to the targeted device. Aspects of an 
exemplary procedure to make such a determination are described in greater detail below in reference to 
FIG. 5 and FIG. 6. This level of indirection ensures that an optimized story 180 will be fonvarded to story 

10 enabled clients 336 and story enabled devices 344. This level of indirection also ensures that if the 
targeted device is not story enabled. lhat.tbeiargeted .device, although -not receiving ^tory 480, receives 
conventional content associated with the mail message 200 along with the novel story header 201 " 
infomnation. As described in greater detail above, in one embodiment, such conventional content is 
detennined by sender/publisher 310 (see FIG. 1) and storyteller 172 (see FIG. 2) upon creation of a 

1 5 message or promotion that corresponds to story 180. 

E-mail message 203, Includes, for example, story 180. In a plrefen-ed embodiment. e-maW 
message 203 Is received by story enabled client 336 after sending story server 302 has detennined story 
enabled client's 336 particular hardware characteristics and any user preferences. In a preferred 
embodiment, story 1 80 is scaled to story enabled client's 336 particular hardware characteristics, network 
20 connection characteristics, and user preferences. 

Applications 190 includes, for example, inforniation provider 192, story player 194, and other 
applications 196. Infonmation provider 192, for example, sends story enabled client's 336 hardware 
capabilities, network connection characteristics and any user preferences to sending story server 302 
(see FIG. 4). Such capabilities and characteristics (discussed in greater detail above) are typically 
25 obtained by querying operating system software (not shown) that controls the execution of computer 
programs and provides such services as hardware management, computer resource allocation, 
input/output control, and file management in story enabled client 336. 

Information provider 192 determines any user preferences in a number of ways. In one 
embodiment, information provider 192 displays a GUI onto a display device (not shown) connected to 

30 story enabled client 336. The GUI will have one or more user Interface controls, for example, a dialog 
box. an edit control, and/or a combination box. to the end-user for end-user selection and input with 
respect to a predefined number of preference categories. Such categories Include, for example, a 
preferred language.<message size limits, message download time limits, message filters (for example, no 
e-coupons), data encryption requirements, and security requirements. (Either limits may be greater or 

35 less than a default set of time limits). In one embodiment, if there are a number of preferences, certain 
preferences will be given a higher priority than other preferences. In a prefenred embodiment, such 
preferences are stored In data 1 98 as a text file (not shown) in a stmctured file format, for example, XML. 
that can be edited by a user wilh using a text editor. 

Story player 194, for example, executes, or plays story 180. As described in greater detail 
40 above in reference to FIG. 4, story 180 includes one or more of op codes, parameters, offsets and media 
parts. To play story 180. player 194 sequentially parses story 180 to extract these op codes, control 
infomnatlon (parameters and offsets), and media parts. As each op code is extracted, player 194 will 
match the op code to a particular computer program instruction, or procedure, which is a logical set of 
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computer program instructions. There are a number of known procedures that can be used to map such 
opcodes to computer program instructions procedures. For example, a simple C programming language 
case statement can be used to perform such mapping. 

Story player 194 will jump to a procedure that corresponds to the opcode and begin a set of 
5 corresponding computer program instructions, in a preferred embodiment, such computer program 
Instructions are C Instructions. If the computer program Instruction requires corresponding parameters, 
the required parameters are extracted on an as needed basis from story 180. In one embodiment, 
paraiDeters can signal the parsing of other parameters from the staclc. There are a number of well known 
ways that a specific number and specific type of parameter can be mapped to a computer program 
10 instruction. For example, the number and types of parameters can be hard wired in the implementation 
of a computer .program instruction. .if.a.parameterJsan .offset to .a .media partof story -IBO, the offiset is 
used when playing story 180 to extract the data for the particular media part when necessary. After a 
procedure returns a status code to story player 194, an instruction pointer points to the next opcode to be 
executed as described above. 

15 Story player 194 advantageously implements cooperative multithreading and synchronization 

through resource constrained retry at the instruction level. To provide such advantages, each procedure 
in story 180 retums one of a number of possible status codes, for example, success, retry, and yield 
status codes. In one embodiment, story player 194 executes sequences of instructions for a thread as 
long as the instmction functions return a status code of "success". Upon receiving a status code of 

20 success, a next thread is executed by story player 194 under similar constraints. Any instruction that 
takes a predetermined amount of time to complete will return a yield" status code, indicating to story 
player 194 that other threads should be executed. Upon receiving a yield status code, story player 194 
stops executing the thread and places it onto a queue for later execution. Such yield status codes are 
Inserted at appropriate places in story 180 by story teller 172 when story teller 172 creates story 180. 

25 Certain story 180 instructions are executed on a time line as described in greater detail above 

in reference to FIG. 4. Such instructions are so tagged with a "wait until time" instruction by storyteller 
172 (see FIG. 4) before being placed Into a master parts database 178. Story player 194 will wait until 
the indicated time to execute such instructions. If story player 194 encounters such an instruction and it 
Is not time to execute the instruction, story player 1 94 will retry the instruction at another time. 

30 Any instruction encountered by story player 194 that requires a memory buffer, wherein the 

memory buffer is not available, is placed on a queue such that story player 194 will retry the instmction at 
a later time wherein such memory resources may be available. In one embodiment, story player 194 
Identifies "wait for event" flags to synchronize story 180 instructions. 

In one embodiment, story player 194 presents a purchase button to a user that is used to 
35 provide a response to the story 180. To Implement such an embodiment, the HAL identifies a user 
selection in the rectangular area defined by a particular hotspot associated with the button. (Hot spots are 
described in greater detail above in reference to FIG. 4). Upon such a selection story player 194 
executes a story procedure or story thread associated with the selection. 

Other applications 196 Include, for example, an optional e-mail client application, for example, 
40 Microsoft Outlook Express®, that provides e-mail receipt and delivery capabilities to story enabled client 
336 using Internet e-mail protocols. In one embodiment, such Internet e-mail protocols include, for 
example, P0P3 and IMAP protocols, in one embodiment such e-mail receipt and delivery capabilities 
are provided by story player 194. 
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Referring to FIG. 6, there is a block diagram that illustrates aspects of an exemplary procedure 
210 to generate and distribute Storyl\/lail messages 200 (see FIG. 4) to e-mail enabled clients, for 
example. StoryMail enabled client 336 (see FIGS. 1 and FIG. 5) or conventional e-mail client 340 (see 
FIG. 1). To better describe procedure 210, the following description references structure that are 
5 respectively illustrated in FIG. 1 , FIG. 2, FIG. 3. and FIG. 4. 

Step 212 provides, for example, multimedia content and/or message parameters to story 
server 302 (see FIG. 4). Such message parameters corespond to the multimedia content. For example, 
a message parameter is a discount rate. With respect to a targeted promotion story, which were 
described in greater detail above, such multimedia content includes, for example, product descriptions. 
10 promotional information, customer specific information and/or pictures to the story server 302 (see FIG. 
1 and FIG. 4). 

As described above, in one embodiment, sender/publisher 310 (see FIG. 1 and FIG. 2 sends 
such content in Document 154 (see FIG. 2). In yet another embodiment, sender/publisher 310 (see FIG. 
1) accesses a URL that con-esponds to a Web page (not shown) served by sending story server 302, 
15 whereby a user could input such content to sending story sen/er 302. Such content is described in 
greater detail above in referent to FIG. 2. However, such content also includes, for example, the identity 
of a specific storyteller 172 to be used to generate a story 180 (see FIGS. 3 and 4). As described above, 
there can be a number of different storytellers 172, wherein each respective storyteller generates a story 
180 with a spedfic predetermined intent 

20 For example, if sender/publisher 310 is an Intemet book, music and video retailer that offers 

music CDs, video, DVD, computer games and other products, the specific storyteller 172 may be used to 
build a parts catalog story 1 80 to be distributed to retailers, or the specific storyteller 1 72 may be selected 
to generate a holiday card story 1 80 to be distributed to customers. 

Step 218 perfonns one time processing of the content as described In greater detail above In 

25 reference to composition engine 170 as illustrated in FIG. 4. Step 220 returns a unique master parts 
identification to sender/publisher 310. As described above, such an identification is used to Identify the 
particular set of master parts data that corresponds to the one time processed content. This identification 
can be used by sender/publisher 310 to access, modify and delete the one time processed information 
from sending story server 302. as well as to send new messages using the same master information as 

30 default content. 

Step 220 sends e-mail message 200 (see FIG. 5) to each recipient that is identified in the 
provided content (step 212). As described in greater detail above in reference to FIG. 5, e-mail message 
200 is an e-mail message that includes story header 201. In this step, a recipient can be either a story 
enabled client 336 (see FIG. 1), a conventional e-mail client 340, or a story enabled device 344. 

35 Step 222 intercepts an e-mail collection request from the e-mail message 200 receiver. Step 

224 evaluates whether the e-mail message 200 receiver is story enabled, for example, a story enabled 
client 336. If not, step 226 sends the contents of e-mail message 200 to the non-story enabled device, 
for example, conventional e-mail client 340 (see FIG. 1). Otherwise, procedure 210 continues as 
illustrated in FIG. 7. 

40 Referring to FIG. 7. there is a block diagram that illustrates aspects of an exemplary procedure 

to generate and distribute StoryMail, according to one embodiment of the present invention. 
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Step 228 gets story enabled client 336 infonnation. As described above, such information 
includes conresponding hardware capabilities, network connection characteristics, and any user 
preferences. In a preferred embodiment, such capabilities, characteristics and preferences are 
represented by story enabled client 336 in a structured file format, for example, as an XML document. In 
5 a preferred embodiment, quick communication protocols are used between story servers 302 and 328 
and story enabled client 336 respectively for intra-sen/er and server client communications, for example. 
HTTP communication protocols. 

For purposes of illustration, story enabled client 336 could represent its particular capabilities 
characteristics and preferences in a structured file format as follows. "CPUSpeed = 300" Indicates that in 

10 the client 336 CPU speed is equal to 300 MHz, CPU or processor speed criteria may be used to 
influence the generation of an optlmized.story .in that the .CPU may not -be fast enough to process large 
video clips In real time. A video dip with small dimensions (width and height) might be used instead. Or 
a signal picture may repress the video content instead of a video stream. '*ScreenColor=yes" indicates 
that the client 336 display device can display color binary images. ''Sound=yes" indicates that the client 

15 336 includes a sound card, chip, or other sound or audio regeneration or playback means and that the 
data element that includes audio can be used to create a story 180. "LanguagePreferences^English" 
Indicates that the user of client 336 prefers to receh/e content in the English language. 
"CommunicationsSpeed=28800" indicates that the client 336 is connected to a 28.8 K-baud internet 
connection and is able to receive, for example, single pictures but not rich media such as motion video 

20 without incunring undue transmission delay. In one embodiment, such capabilities, characteristics and 
preferences are sent to the URL of sending story sender 302. which was included in the story header 201 
(see FIG. 5). 

Step 230 generates the story 180 (see FIG. 4 and FIG. 5) using a particular storyteller 172 
identified by story teller ID 202 (see FIG. 5) in e-mail message 200. To accomplish this, the specific 

25 storyteller 172 selects, or strings together only those portions of the set of master parts (identified by the 
date set ID 204, see step 219) in the master parts database 178 (see FIG. 4) that are compatible with 
each of the following: the capabilities, characteristics and preferences identified in step 228; and. the 
content which is compatible with the purpose of the specific storyteller. While stringing together such 
information, the specific storyteller 172 may create several original logical files, compress them, and 

30 compress each of the compressed logical files into a final single file. The logical order of the data in the 
each respective original single file Is maintained in the headers, of a sequence of sub-files that are 
automatically generated firom each respective original logical file. Such a logical order is advantageously 
used by sending story server 302 (see FIG. 1) when transferring a story 180 to a story enabled client 336 
(see also, step 232). 

35 For example, the opcodes representing computer program instructions and parameters may be 

placed in a first logical file, text and parameters In a second logical file, all motion video may be placed In 
a third logical file, all audio data may be placed in a fourth logical file, and the like. Altematively, the 
computer program, control information, audio data, motion video, and the like may be interspersed. In a 
preferred embodiment, the elements which are best compressed using the same compression algorithms 

40 are combined together so as to achieve a more optimal compression level. 

Notice that system 300 (see FIG. 1) cooperates in collecting all relevant information and data 
first, such as for example, the capabilities, characteristics, and preferences described above, before 
generating a story 180 (step 230). This makes system 300, and in particular story 180 generation 
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advantageously automated and dynamically adaptive. Having obtained all this infomiation. system 300 
then generates the optimum story 180 after a connection has been made with recipient. This is because 
only at the time of connection will story server 302 know for certain the particular characteristics of the 
recipient's client device, communication channel, and user preferences. 

5 In some conventional systems, a user may register with a server characteristics of a registered 

device as well as registered user preferences. However, these conventional systems do not generally 
test or otherwise take into account the hardware capabilities of the device or network connection 
characteristics used by the device to communicate with the server at that moment of time. 

The StoryMail system 300 (see FIG, 1) and procedure 210, on the other hand, take all such 
10 factors into account after connecting to a recipient's device to generate the optimal story 180 from a 
-standpolnt of'Story'Size.'language.-use ornotti5e'of'audio'or:visual*content, and the like. In a sense, the 
StoryMail procedure 210 is contrary to other prevailing trends which attempts to pre-fbrm content so that 
is available as early as possible in that StorylVlail 300 actually delays composition of an e-mail message 
until these capabilities, characteristics and preferences are known. In this manner, a story 180 sent to 
1 5 any device will be experienced in a manner that is optimal for that device and user. 

Step 232 communicates a second StoryMail message 200 to story enabled client 336. The 
second e-mail message 203 (see FIG. 5) includes that generated story (step 230) and the corresponding 
story header 201 (see FIG. 5). In one embodiment, storyteller 172 encrypts generated story 180 (step 
230} so that it cannot be read by any intervening process after it is sent to story enabled client 336 and 
20 before it reaches its destination. In such an embodiment, if public key encryption is used, there is no 
need to have a central repository of public keys because the public keys of the center and receiver client 
. can be exchanged after connection time when the story 180 is being generated (step 230). 

' As discussed above in reference to step 230, each logical sub-file of story 180 includes, for 
example, a startup sequence of instructions that can be used to start the transfer of the following sub-files 

25 in the sequence. Such segmentation of the files is beneficial for a number of reasons. For example, 
while transferring a story 180 to a story enabled client 336 (see FIG. 1), if the bandwidth is too small, a 
sut>-file will not arrive in time. In one embodiment, story player 194 (see FIG. 5) pauses until each 
respective sub-file transfer is complete. In this manner, quality of story 180 presentation will be constant, 
even if receipt of story 180 content is intermittent. In yet another embodiment of the invention, real-time 

30 transmission of story 180 is not required so that the recipient may never be aware that transmission was 
delayed, suspended, or intermittent for a particular portion of story 180. 

Step 234 executes, or plays the story. Aspects of an exemplary procedure to play a story 180 
are described in greater detail above in reference to FIG. 4. In the preferred embodiments of the 
Invention, a custom story 180 is generated for each receiving device, such that a story 180 can be 

35^ generated to play on all types of story enabled devices and compatibility is maintained for all stories 180 
even as story enabled devices may change or evolve. Even the rich media stories 180 will play on non- 
rich media enabled devices because, in preferred embodiments of the invention, there is always some 
text or other simplified content behind more complex elements such as sound or video clips to fall back 
on. This is because the master parts database 178 (see FIG. 4) includes Information to create new 

40 stories that will play on all story players because there will always be the old instruction alternative to fall 
back on. Likewise in at least some embodiments of the invention, even rich media stories are able to 
playback on conventional e-nnail clients 340 having rudimentary e-mail applications because of the fall 
back text provided in the master parts database 178. 
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As discussed in greater detail above in reterence to FIG. 4, each logical element of a story 180 
includes, for example, associated semantic Information that respectively indicates a set of logical 
elements of story 180 that are to be displayed, or played on the redplents device. In one embodiment, 
such semantic information also indicates when story player 194 should substitute an alternative logical 
5 element for another particular logical element 

Step 236 determines whether there is a response to the played story 180. Such a response 
can be provided, for example, by a user selecting a button control that the story 180 causes to be 
displayed. If there is such a response, step 238 generates a response to the story 180. For example, if 
the story is an e-coupon that promotes the purchase of a particular book, story player 194 (see FIG. 5) 

10 will create a structured format purchase order form, for example, an XML purchase order form. Such a 
form includes^ for example, the customer .ID, ihe .product .SKU ^stocking Jiumber) ihat. was included -in 
story 180 (parsed from document 164 (see FIG. 2. FIG. 3, and FIG. 4), and any preferences. Such 
preferences include, for example, an Indication of whether the book is to be received in electronic format 
instead of a physical format, the language that the book is to be written in. payment infomiation, and the 

15 like. 

Step 240 communicates the response (step 238) to the fulfillment server that was kJentified in 
the story 180 (parsed from document 154 (see FIGs. 2, 3, and 4). Such communication can be 
• implemented by using a number of different protocols, for example, the HTTP protocols or SMTP 
protocols. 

20 The Invention offers a number of strengths as compared to the closest competing technologies. 

A story 180 plays off line as well as online and is lightweight (thin) enough to run on inexpensive 
information appliances or other devices. When so desired, a story Includes, for example, user 
navigational aids, user forms, and can automate a transaction fulfillment process. A story is instantly 
Interactive, self-contained and reliable. Creation of a story's 180 content can be completely automated, 

25 such that devices made today will be able to handle future content without upgrades. The invention 
facilitates publishing messages that are meaningful to individuals with physical disabilities and provides 
for intelligent content specific scaling and compression. A story 180 is easily stored and exchanged as a 
single file, and the same content runs in Web pages in its own window and on low-power device screens. 



30 Additional Exemplary Embodiments of System. Method. Computer Program, and Signals 



Procedural System and Lanauacie for Generation, Customization, Encapsulation, Transmission, 
and Playback of Content andSinple Language Instructions for All Applications and Devices 

The inventive system and method provide a single file format (referred to as the story file 
35 fomnat) and file execution procedure that permits communication of text, pictures, motion video, and other 
• rich media content These story files and the story file fomnat can encapsulate the rich-media content 
itself, user navigation, e-commerce, intelligent fonns. automation, as well as other data and executables 
in a procedural form. In addition, embodiments of the story files are e-commerce and email aware, fully 
functional on-line or off-line, compressed to reduce storage and transmission overhead, efficient, and 
40 lightweight. All story files are desirably constructed to run in a large variety of operating environments 
and on a large variety of devices. The system allows for efflcient automated generation and efficient 
automated customization through the use of logical files and indirection. 
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For example, the inventive story file may be embedded in and mn from an Internet web page, 
streamed from a server, run or executed from an email attachment, executed from ROM or RAM in any 
one of a variety of devices or device types, executed as an independent program (stand-alone program 
or as an application program within an operating system environment), as a Multipurpose Intemet Mail 
5 Extensions (MIME) Type, as an ActiveX component, as a plug-in to another application program, 
executed within an email or other client, or in numerous other ways. The story file can be generated 
automatically by computer programs, for example a program mnning on an Intemet connected sender. 
Given various criteria presented as input, pieces of story procedural content can be very efficiently 
selected, concatenated into logical files, then packaged into a single story file customized according to 
10 the input, without the need for complex decision or linking operations. Such input may include limits on 
final story file size, content types, preferred language, and the like. 

This functionality is at least in part due to the implementation as part of a single complex 
instruction based procedural language, sometimes refenred to for convenience as Story Procedural 
Programming Language (SPPL), SPPL is designed for procedural content to be fully computer or 
15 otherwise autonomously generated without human involvement, though SPPL may be generated 
manually though less efficiently, and In one embodiment, provides a self-contained ultra-low overiiead 
multi-threaded run-time system. SPPL provides a procedural and methodological framework that may 
advantageously be optimized for multimedia and e-commerce applications. 

Semantic elements include flags and/or other indicators or indicia that identify the particular content 
20 element with which the semantic element is associated. For example, a semantic element may identify 
that the associated content element is for an overview of an element that would not be used as a direct 
substitute or replacement for an alternative (e.g. richer) content element In this example, a story player 
would use the overview text and a text to speech algorithm to conununicate what the screen shows for a 
user who cannot see the display screen at all. In this case this overview element does not directly 
25 replace or back-up another element. 

In one example, "this is an opportunity for you to contribute to the Worid Wildlife Fund" and 
"there are three options that you have; (1) make a contribution by credit card. (2) make a contribution, by 
check, and (3) make no contribution". A player that can automatically extract meaning from these two 
pieces and deliver them over a phone line would pull out these elements from the story according to their 
30 semantic flags and would be able to detect and relate how many options there are. Note that when 
displayed on a screen, there is no reason to explain It because it is clear to the message recipient 
viewing the screen what the intent of the message Is. 

More generally, semantic elements support explanation and navigation. Semantic elements 
need not be in a one-to-one relationship with other elements. Semantic elements further pemiit a type of 

35 filtering or extraction of story components. For example, it would be possible to search for all elements of 
any particular type (e.g. pictures, text, audio, motion video, oven/iews for content that would be rendered 
directly on suitable devices, and the like. In preferred embodiments, there is a set of semantic 
information for each rich-media element, along with a backing text element, with its own set of semantic 
information, to use as for generating a suitable alternate backup rendering that communicates the intent 

40 of the message for situations in which the rich media element renderings are not possible or not 
perceivable by the reader in the rich media format. 

In certain preferred embodiments of SPPL formatted stories execute or play on all story 
enabled devices for all time. For example, all rich media stories will play on poor-media devices because 
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there is always a text or symbolic (poor-media) element behind each rictvmedia logical story element to 
fall back on in the event the rich-media element cannot be played. For example, there is a text element 
"Photograph of Albert Einstein giving blackboard lecture on general relativity theory", behind a black and 
white two-dimensional photograph of Albert Einstein, which itself is behind a richer color photograph of 
5 Einstein, which is behind a video-image dip of Einstein at the same blackboard. Semantic infomnation 
and procedures included within the story ensure that the proper elements can be automatically selected 
at run time so as to preserve the Intent of the story message regardless of the limitations of the story 
playback device. 

Furthermore, new SPPL stories which contain new instructions will play on old story players (or 
10 on earlier versions of story player software) because in prefen-ed embodiments there will be an older or 
compatible SPPL instruction set alternative to fall .back .on .that wilt .pJay either -the -richest-media 
alternative or a poor-media alternative using only the instructions supported by the old story player. The 
decision of whether to fall back is made using only instructions known to exist in all story players. In this 
manner new instructions are never executed on old players which do not support the new instructions, 
15 yet there is always a method for communicating the intent of the message, albeit in a less media rich 
manner. 

The story capabilities are supported by several enabling technologies. These enabling 
technologies include the provision and use of a set of proprietary compression algorithms and techniques 
adapted for voice, video, music, images, and text or other symbolic data. Self-contained threaded 
20 procedural data technology is also used that is very processor and memory efficient, and highly 
funcfional, flexible and portable to a wide array of devices. 

At a top-level, the story technologies are embodied in two portable code engines: a 
composition engine and a playback engine. The story composition engine may be used for human and 

computerized or autonomous authoring systems as well as for automatically generating custom stories 
25 using parameters from customer or other databases. The story playback engine may be used for story 
playback in for example, playback In Internet web browsers, playback in various devices, and playback in 
custom appFications. 

Embodiments of the inventive story file format and SPPL provide a run-time system with 
cooperative multi-threading at the instmction level, and thread and media playback synchronization 

30 based on resource constraints and instruction retry methods. The code-based story standard is 
advantageous for several reasons. It is reliable because a single set of source code is used for all 
encoders and decoders thereby eliminating incompatibilities that might arise because of untested 
combinations of encoders and decoders developed by different third parties. Also, there can be no 
misunderstandings on how-to implement certain features such as may arise from ambiguities or 

35 misreading of text based specifications. It also provides for quick porting to Microsoft Windows OS. 
Linux OS, Unix OS, Macintosh OS, and Palm OS based computers, Cell Phones. PDAs and other 
current and to be produced information appliances and devices. The story file fomiat is also 
interoperable across a wide range of networks and devices. 

Having described features and operational characteristics of the Story File Fonnat (SFF) and 
40 Story Procedural Programming Language (SPPL), attention is now directed to particular details of SFF 
and SPPL 

Embodiment of an Exemplary Story File Structure 
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Typically, a story file will include control intormation, text or other syml)olic Information, audio . 
information, pictorial information, motion picture information, video information, and semantic infomiation 
designed to allow players to preserve the intent of a story message when play back of elements of the 
story are not possible. The composition engine (described elsewhere In this specification) is responsible 

6 for putting together or packaging these infonmation items Into the single story file so that it may be utilized 
by the story player. The characteristics of the composer, communication channel, and story player 
influence how this packaging (and later unpackaging) is most beneficially performed. It is advantageous 
from the standpoint of the story player and the device on which the story player is installed or 
Implemented that the received file is as small as possible, consistent with maintaining the message and 

10 its Intent Frequently, though not in all Instances, the story player will be a thin device with small or 
modest memory. These story player characteristics plus the desirability of minimizing communication 
channel bandwidth, suggest that the story should be compressed prior to transmission to the story player. 
However, even if the thin story client is capable of receiving and storing the compressed story file, there 
remains a need to decompress the file for playback or rendering. The desirability of providing 

15 autonomously computer generated story files suggests using predetennined procedures for processing 
logical elements of the story file during its creation. 

The inventive story file is therefore produced according to a story file assembly procedure that 
satisfies each of these and other needs and/or preferences. The story composition engine operates 
according to predetermined rules so that each story file is assembled into a standard framework that is 

20 understood by every story player. Assembly within the composition engine Includes packaging and one 
or more levels of compression of a plurality of story file constituent logical elements into logical files. 
These logical files can also be compressed/decompressed using a top-level of compression during the 
packaging and unpackaging or unpacking process. Disassembly within the story player playback engine 
includes intelligent selective unpackaging and decompression of these constituent logical elements from 

25 logical files. 

The composition engine Is responsible for choosing the constituent logical elements required In 
each story file. These constituent elements will generally include commands, parameters for the 
commands, and data. Data may take the fomn of text or other similar symbolic or character data, audio 
data for generating or reproducing sound information, and video data for reproducing still or motion 

30 graphics, pictures, Images, or other two dimensional (or three dimensional) infonnation. As described 
elsewhere herein, preferred embodiments of the invention provide for multiple levels of media richness so 
that rich-media content may be utilized when possible but media having lower richness is available as a 
backup when necessary or prefen-ed. Recall for example, that text is a backup for audio or video, that 
monochrome video Is a backup of color video, that still Imagery is a backup for motion video, and so 

35 forth. In addition to backup information additional elements may be Included for which there is no spedfic 
rich-media counterpart. For example, there may be elements providing text that can sen^e as a primary 
description of what is being depicted on the screen. Such an element could be used for automatically 
rendering a rich-media story over a voice only phone so that the intent of the message can be fully 
communicated without any visual elements. 

40 In many implementations, each logical element is matched to a set of semantic flags which 

indicate the circumstances and manner In which the logical elements might be used. For example a flag 
may be set for a text element that indicates that it is a first level overview of the message Intent. A 
different flag for another element could indicate that element is selectable and has. text available to 
describe the action taken when the element is selected. Multiple levels of audio sampling rates, video 
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resolution rates, and even text language support may also be provided. Hence, without describing the 
intricate details of the composition engine selection or authoring process again here, it will be appreciated 
that a typical rich-media story will include multiple text, audio, and video logical elements, as well as 
control elements and semantic flags describing the role of elements for story playback and user interlace 
5 and/or navigation. 

In preferred embodiments of the invention, these logical elements are advantageously 
packaged and compressed differently. Control elements, text elements, audio elements, and video 
elements represent different types of logical elements arising at least in part from their associated data 
characteristics, available and/or preferred data compression schemes appropriate to each logical 

1 0 element type, the size of decompressed data In the story player, the relative or absolute time at which the 
particular type of logical element is needed during .story .playback in the story .client <or intervening 
receiving entity), and other factors. Even audio logical element types may be further characterized into 
subtypes, that for example, treat speech differently from music. In similar manner, video type logical 
elements may be broken Into additional subtypes, that for example, treat computer generated graphics 

15 having limited colors or tones and well defined color or tonal boundaries differently from continuous tone 
photographs. These subtle differences, may fi-equenlly permit the use of a more efficient 
compression/decompression scheme for each logical element. (The separate compression of different 
logical elements into like logical files as described hereinafter.) 

(n one embodiment, the composition engine builds each logical element separately or a group 
20 of logical elements having the same logical element type. A group may include only some logical 
elements of a particular type or all elements of that type. It then optionally but preferably compresses the 
logical element or group of logical elements using an appropriate compressk>n scheme. Compression 
schemes for audio may, for example, include ADPCM, physco-acoustical models, Transfonns. .MP3, as 
well as other schemes. 

25 Compression schemes for video may, for example, include DCT, L2SS. Motion Vectors, 

Variable Length Codes, Run-length, Fractal, Vector Quantization. Wavelets, as well as other schemes. 
Where different groups of the same type are provided, different compression schemes may be utilized for 
different groups. Control type logical elements and text type logical elements may be compressed using, 
for example, be a LZSS, Run-Length, Table look up, or other suitable compression scheme, but may 

30 frequently not be compressed at this initial pre-packaging stage of composition. (But. see description of 
compression of packaged story tile.) 

These compressed logical elements or groups of logical elements are then combined into a 
single file. The combination may be accomplished by concatenating the logical files (logical elements or 
group of logical elements) sequentially or in any other way. Recall that logical files are parts of a single 

35 story file. Subfiles, described further later in this document, relate to a streaming mechanism for such 
applications such as starting to play a story before the entire story has been received by the player, and 
which are in a sense complete stories in themselves that are chained together. The combined file is then 
optionally but preferably further compressed in a final compression stage. A generic compression 
scheme such as Lempel Ziv Welch (LZW) compression may, for example, be utilized as well as other 

40 schemes. Compression of the combined file is particularly advantageous when the control and text 
logical elements or groups of logical elements have not been separately compressed. 

Using multi-stage (compress logical elements and then compress combined file) and element 
differentiated compression (use different compression schemes for different logical element types) may 
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permit reducing memory and bandwidth requirements by a factor of from about 1 to about 1000, 
dependent upon data characteristics and the algorithms applied. 

The compressed file is then communicated to the client, where it may be received in its entirety 
prior to the initiation of playback or where portions of the compressed file may be received after playback 
5 has begun. 

Optionally the logical files, command portions, and the text portions, of the file are unpackaged 
and decompressed using the decompression to undo the final stage compression described above. 
Advantageously, the decompression occurs as the story Is being played back so that only the portions of 
the commands (and optionally the text) that are actually needed are decompressed. In other 

10 embodiments, all of the commands (and/or text portions) are decompressed either when received or at 
the start of a story playback phase, in-erther case, the larger logical elements are ndl decompressed 
until their data Is needed for playback. More specifically, the audio logical elements and the video logical 
elements are advantageously decompressed on the fly during playback so as not to unnecessarily 
consume client device memory. In the preferred embodiment, the decompressed audio and video logical 

15 elements are not saved, so that it is necessary to redo the decompression if the story is replayed. (Other 
embodiments save the decompressed elements but this is not preferred as client resources, parttculariy 
client device memory, are inefficiently utilized. 

As a result of the procedural nature of the story file as impleriiented in a prefenred embodiment, 
decompression of the logical elements (for example of a video image logical element) does not 

20 necessarily directly reveal a data structure having an array of picture elements (pixels). Instead, a 
procedure with commands and data are revealed that is easily implemented or executed by the story 
player to render the image. This approach places a greater burden on the compiler In the composition 
engine but greatly simplifies the woric in the story player. It also pemiits a thinner and more processor 
and power efficient story player. Other embodiments may directly decompress the larger logical 

25 elements, such as audio and video, and place them into a data structure for subsequent playback or 
rendering, but this approach is not preferred as it tends to increase memory requirements and playback 
engine or process sophistication. 

This approach is particularly beneficial as the story Instruction or command set is targeted to 
perform the tasks associated with story authoring and playback; for example, tasks such as Implementing 

30 e-commerce applications, performing picture decompression, performing audio decompression, audio-to- 
video synchronization, forming XML strings, performing multimedia applications, and other functions 
associated with e-commerce and rich-media communication. Embodiments of the story procedures may 
conveniently be implemented In general purpose computer programming languages to take advantage of 
a large base of skilled programmers. For example, languages such as "C, "0++", JAVA, or the like may 

35 be utilized to author or generate programs into SPPL or SPF, However, when such conventional 
languages are used it will be understood that the functions and subroutines may be novel and spectficalty 
directed to story applications. For example, novel function and subroutine libraries are provided by the 
invention. One, such a library subroutine is a procedural function made up of a series of story 
instructions that decompresses, synchronizes and drops frames as necessary during playback of video 

40 streams. 



Exemplarv Story Programming Conventions for a Preferred Embodiment of System and Method 
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Programming Issues and Conventions are now described. Each of the programming 
conventions and related methodologies pertains to a preferred emt)odiment of the invention and such 
conventions may often be ignored, if only a subset of the full functionality is required or desired. Story 
implementation code has to be carefully constructed to ensure the security, portability, small code size, 
5 robustness, and speed of execution required for email based messaging that needs to work well on a 
large variety of devices. Some of the programming issues are discussed below. Where there are 
tradeoffs to be made, the issues are listed below in order from most important to least. 



Programming for Portabllltv 

iO The SPE (Story Playback Engine) code should run in all devices and environments with a 

minimum of platform specific effort. The goal is to be able to enable a new device for Story playback with 
less than two work weeks of effort by a programmer familiar with the target. device, but not necessarily 
familiar with the SPE code. It is expected that third party device and application programmers will be 
able to do ports based on the Story code-base and documentation, with only minimal support from 

15 StoryMail. 



Preferred Embodiment Utilizes C-Lanouaoe Subset 

Preferred embodiments use a C language subset.^ C has proven to be efficient in code size 
and execution speed while remaining highly portable, C++ was not selected because it is not supported 
20 by tools for many DSPs and is not as efficient as C; however, we do want to take advantage of the 
modem optimizers bulK into existing C++ compilers and preserve some of the advantages of C++ such 
as the ability to easy create multiple instances. For this reason the C language subset we have chosen 
is compatible with C++ compilers and can easily be encapsulated in a C++ wrapper in a manner that 
allows for multiple instance creation. C++ as well as other current and to be developed languages may 
25 however be used to implement the Invention. 

Although aspects of the Invention have been described In considerable detail, the listing below 
provides a sample of exemplary code so that some additional insight may be gained as to its structure 
and operation. 

r 

/* 

30 These are example functions from a Story playback engine which illustrate 

one possible software implementation of a remarkably lightweight Story 
operating environment. 

These functions illustrate most all the functionality needed for the story 
35 multi- threading, media synchronization and runtime model for Story playback. 

The first two functions perform the functions of implementing a round-robin, 
mult i- threaded operating system. 

40 The second two functions illustrate functions that implement actual Story 

op -code execution. 

*/ 



45 



/* 
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StoryPlaybackCycle should be called continually in a loop on a single host 
operating system thread. 

This functions executes all the threads once in order, until each thread 
5 gives up control, then returns. 

Possible return code ^defines can be found in pStory.h and end with the 
suf f ix , "_RETURN_CODE '» 

10 When the return value is negative, then execution of the calling loop should 
end. 

*/ 

S32 FUNC_PREFIX StoryPlaybackCycle (void) 
{ 

15 SU32 u32_NumberOfActiveThreads=0; 

SU32 u32_NuTnberOfThreadsLef t=:p. c .u32_NuinberOf InitializedThreads; /* 
number of initialized threads */ 

p . c . u32_StoryPlaybackCycleNuinber++ ; 
20 p . c . u3 2_S toryThreadIndex=0 ; 

while {u32_NumberOfThreadsLeft) 
{ 

p . c . context sp . c . contexts [p . c . u32_StoryThreadIndex++] ; 

25 if (p. c. context. u32_State»=RUNNING_CONTEXT_STATE> 

{ 

u32_NuinberOf ThreadsLef t- = (p . c . context .u32_S tat e ! =:UNINITIALIZED_CONTEXT_STATE 
); 

30 continue; /* this thread is not running so do next thread */ 

} 

u3 2_NuinberOf Act iveThreads++ ; 

if (InputAvailableO) 
35 { 

do 
{ 

* ProcessInstructionO ; 

} while 

40 (p . c . s32_ProcessInstructionReturnCode==SUCCESS_RETURN_CODE) ; 

if {p.c,s32_ProcessInstructionRetumCode<0) 

{ . . , 

break;* 

} 

45 . } 



p . c . contexts [p . c . u3 2_StoryThreadIndex- 1] =p . c . context ; 
u32_NumberOf ThreadsLef t - - ; 
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if <u32_NumberOfActiveThreads==0) 
{ 

p . c . s32_ProcessInstructionReturnCode=N0_ACTIVE_THREADS_RETURN_C0DE; 

} 

5 return (p . c . s32_ProcessInstructionRetumCode) ; 

} 

/* 

This function fetches an opcode from the input buffer and calls the function 
10 that implements the opcode. It also handles instruction retry by: 

Setting the default status returned from the opcode function to 
SUCCESS_RETURN_CODE 
Storing the pointer to the opcode 
15 Calling the function for the opcode 

Inspecting the return code when the opcode function returns 

If the return code is RETRY_INSTRUCTI0N_RETURN_CODE then the instruction 
pointer is reset to point back to the opcode by restoring the saved value. 

20 */ 

void FUNC_PREFIX Processlnstruction (void) 

{ 

PSU3 2 pu3 2_SavedNext Input ; 

pu32_SavedNextInput=p . c . context . inputBuffer Info .pu32_Next Input ; 
25 p . c . u3 2_CurrentOpcodesGe tSU3 2_FromInput ( ) ; 

p . c. s3 2_Process Instruct ionReturnCode=SUCCESS__RETURN_CODB ; 
(controlPunctionAddressArray [p . c . u32_Current Opcode] ) ( ) ; 

if (p . c . s32_ProcessInstructionRetumCode==RETRY_INSTRUCTION_RETURN_CODE) 
{ 

30 //Instruction could not proceed, so try again next time 

p . c . context . inputBuffer Info .pu32_Next Input =pu32_SavedNext Input ; 

} 

return; 

} 

35 /* 

Stop execution of this thread until all the other threads have had a chance 
to run. The return code, YIELD_TO_NEXT_THREAD_RETURN_CODE, has a different 
value than a SUCCESS_RET0RN__CODE . 

40 This will cause the main cycle function to move on to executing the next 
thread. 

When the cycle function gets back to executing this thread, execution will 
proceed starting with the instruction following the YIELD_OP instruction. 

*/ 

45 void FUNC^PREFIX YieldOp(void) 
{ 

p . c . s32_ProcessInstructionRetumCode=YIEIjD_TO_NEXT_THREAD_RETURN_CODE; 
return; 

} 
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/* 

End ops are used to end subroutines and disable threads. 

Note that after the last running thread ends, then the story playback will 
5 automatically end. • 

*/ 

void FtINC_PREFIX BndOp(void) 
{ 

RETURN_ADDRESS_STACK_ELEMENT_TYPE rase ; 
10 SU32 u32_i; 

if (p . c . context . u3 2_SubroutineNest ingLevel ) 

{ 

p . c . context . u3 2_SubroutineN€ist ingLevel - - ; 
Pop ( ( PSU8 ) &ra se , si zeof ( rase } ) ; 
15 p . c . context . inputBuf f erinf o=rase . inputBuf f erinf o; 

p.c. context .pu32_ParaTneters=rase .pu32_Parameters; 

p. c . context .pFileInfo=rase .pInputFileInf o; 

for 

{u32_ia0 ;u32_i<rase . u32_NuTnberOf Element sOnStackToPopUponRetum;u32_i++) 
20 { 

Pop(mJLL,0) ; 

} 

} 

else 

25 { /* Thread Ended its own Execution */ 

p.c. context . u32_State=SUSPENDED_CONTEXT__STATE ; 

p.c. s32_ProcessInstanjct ionReturnCode=YIELD_TO_NEXT_THREAD_RETURN_CODB ; 
} 

30 return; 
} 



Story and Story Piavback Engine Versioning 

Versions optionally but desirably are placed into Story Playback Applications using two values 
35 #defined in stConflg.h. The first value Identifies the platform and the second identifies the platform 
Independent revision number. Both values are 31 bits and are accessible during run-time as an indirect 
parameter to any Story instructfon op-code. 

Hardware Abstraction Layer API (HAL) 
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This Applications Program Interface (API) is used to separate the portable code from the 
device dependent code necessaiy to graft the SPE to a particular device or application. The API is 
embodied in a set of C functions and associated informational memory structures and data structures for 
the media to be rendered. The portable code of the SPE handles as much as possible to make the 
5 Hardware Abstraction Layer (HAL) as simple as possible and to limit the need to use any more of the 
device operating system as possible. For example, pictures and audio are decompressed and rendered 
into simple raw output sample values in a very limited number of possible formats. Also, all 
synchronization of media and cooperative multitasking is done within the Portable Playback Engine code 
on a single device native operating system thread. Even this one thread returns to the device OS within 
10 1/30 of a second so that the device can perform other functions even if it does not contain a 
multithreaded OS. 

Hardware Abstraction Laver (HAL) Media and Data Formats 

The Story Playback Engine (SPE) core will provide media and other data to the HAL In a 
15 limited number of formats, as discussed in this section. Though it is intent of the SPE core to provide the 
most useful and common formats, the large code size that would be entailed by directly supporting all 
data fonnats used across all platforms is to be avoided to the extent possible. Thus, it may be necessary 
for the HAL to pertbrm data conversion if it uses a data fomnat not supported by the SPE core, in some, 
such conversion code can be adapted from an existing HAL. 

20 

Audio Formats. Picture/Video Frame Fonnats. and Other Media fomnats. 

Media formats are advantageously limited to selected formats so that when exposed to the 
player device Hardware Abstraction l-ayer a lot of complexity (and code size) is not required. This 
preference yields simplicity and light weight and facilitates portability of the player on multiple platforms 

25 as the number of options are small. It should be appreciated, however, that this does not represent a 
compromise in system performance or in the features that the player (or composer) can offer. Rather 
than permitting numerous fonnats in the player, flexibility to handle multiple • possibly diverse picture, 
video, audio, text, and/or other media is done by transcoding so as to be compatible with all current and 
future formats without requiring player changes or updates. The author of a message can use any format 

30 he or she wants, and transcoding or conversion from the author's format to one of the player supported 
formats is readily pertbnmed. This approach keeps the story player simple, lightweight, and portable. 
The intelligence and flexibility are provided in the transcoder. 

For example, in one embodiment of the invention with respect to picture/video frame fonnats 
for planes, masks, alpha blend, scale, translate, rotate, and other image, graphic, picture, and video 

35 frame operations, the frame formats used by the player are BW, RGB. and YCbCr (analogous to YUV in 
analog formats). Audio sample and playback rate and channel formats supported by the player In this 
embodiment are 8000HZ 1 channel, 11025HZ 2channel, 22050HZ 2channel. and 44100HZ 2channel. 
With respect to text, either or both of ASCII or Unicode formats may be supported, and where one Is 
supported, conversion to the other is accomplished using known techniques. It is noted that these 

40 particular supported fonnats are exemplary, and that the more important concept is to reduce the number 
of media formats that are supported within the player to those that are needed of provide significant 
advantages if they are not needed, and to provide support for other media formats through the 
composition engine and transcoders. 



wo 02/10962 



111 



PCTAJSOl/23713 



Time Format and Representation 

In a preferred embodiment, all time is kept in milliseconds. A single HAL funt&on, SU32 
HalGetTime(void); is all that is needed to gain plalfomn independence for time keeping. The HAL time 
5 returned never has to be explicitly set as the portable code will handle the base time and wrap around 
issues. There are, however, two modes of operation that HalGetTimeQ should support. One Is based on 
actual time, and the other is related, but based on the actual physical audio sample's output rate. Having 
the two modes Is necessary to ensure that there is no drift in the synchronization of audio and video. If a 
device does not support audio output then in both modes HalGetTimeQ should just return the time based 
10 on milliseconds from any fixed starting point. There is no time of day or calendar date available; however 
they may optionally be provided. 



Hardware Abstraction Laver Functions for the Story Playback Engine Core 

The funcUons that the Hardware Abstraction Layer (HAL) provides to the SPE core are listed in 
1 5 Table 2. Note that by programming convention all HAL function names use "Hal' as a prefix. 



Table 2. Exemplary HAL Functions 


Remarks 


SFILE *HalOpenFileByNameForBinaryWrite 
( 

SCHAR *pFileName 

): 


Normally used for debug 
system only 


SFILE *HalOpenFileByNameForBinaryRead 
( 

SCHAR *pFileName 

): 


Normally used for debug 
system only 


SU32 HalWriteFile 
( 

SFILE *pFile. 
SU8 *pBuffer. 

SU32 u32_NumberOfBytesToWrite 

); 


Normally used for debug 
system only 


Void HalOpenFileForBlnaryRead 
( 

INPUT^FILEJNFOJTYPE *pFileInfo 

); 


Used by story player 


Void HalExit 

( . . 
S32 s32_ExitCode 

): 


Used by story player 


SU32 HalReadFile 
( 

SFILE *pFile. 
SU8 *pBuffer. 

SU32 u32_NumberOfBytesToRead 


Used by story player 
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Table 2. Exemplary HAL Functions 


Remarks 


); 




SU32 HalReadlnputFile 
( 

SFILE *pFne. 
SUB *pBuffer, 

SU32 u32_NumberOfBylesToRead 

); 


Used by story player 




Void HalPositionFile 
( 

SFILE *pFfle. 
SU32 position 

); 


Used by story player 




Void HalCloseFile • 
( 

SFILE *pFile 

): 


Used by story player 




Void HalDebugOut 
( 

SCHAR *pMessageString 


Used by story player 




Void HalUninit(void); 


Used by story player 


Void HallnitHardware 
( 

SRECT 

^pVisableDisplayRequestedRectangle 

); 


Used by story player 




SU32 HalAllocateMainMemoryBlock(void); 


Used by story player 


Void HalSetHatlnfoSizeRectangle 
( 

DISPLAY_DESCRIPTOR_ELEMENrr_TYPE pDescnptor 

): 






Void HalDisplay 
( 

DISPLAY DESCRIPTOR ELEMENT TYPE *DDescriDtor 

); 


Used by story player 




void HalProcesslnput(void); 


Used by story player 


void HalClearEntireDisplay(vofd); 


Used by story player 


SU32 HalGetTime(void); 


Used by story player 
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The Story "STfer Macro 

Ail double quoted C syntax constant strings should be placed inside the STQ macro. This is 
normally defined just to keep the double quoted string as is. but on some systems it may be necessary to 
redefine the STQ macro so that the compiler can support both ASCII and UNICODE strings. 

5 

Data Variable Restrictions 

C Bit Fields are preferably not used. The size and order of bits within integers will cause 
portability problems between little and big-endian machines. 

40 No StmcturesIn Interfaces Unless Unlced In 

When interacting behveen programs that are not compiled and linked together, you cannot 
assume that the structure offsets and sizes will match. You should use exact #define-based offsets 
based on byte size units instead of structures. 



15 Dealing With Pointers 

Pointers can have a size different from that of integers on sonie processors. So, It is important 
never to assume anything about the size of pointers. Also for security, robustness and portability 
reasons, no pointers should be stored on a Story Thread input buffer, thread stack, or in the main 
aflocated memory block. 

20 

Small Size 

Compression algorithms were selected to make for small de-compressors with low CPU 
requirements. Having a procedural representation allows for a small number of functions to be 
coordinated by procedural control to do a wide range of things, keeping the playback code small: All data 
25 is kept aligned on a four-byte boundary and accessed as 32 bit unsigned words. This eliminates the 
need to have code to convert and compare values of different sizes and allows us to use the same 
functions to operate on different types. All this results in smaller playback engine code size. 

The operations carried out by the story playback engine (SPE) are designed to be simple at the 
expense of complexity to the programmer or compiler that generates Stories. For example, there is no 

30 memory allocation related garbage collection because that would require a good deal of code to 
implement and present real-time execution uncertainties. Instead, the programmer, compiler or 
generator should explicitly specify with an INIT_OP operation (See description of INIT_OP operation 
elsewhere in this description) exactly how much memory will be required for execution until the next 
INIT^OP operation will be executed. At least one INIT_OP operation should be present m each Story. 

35 and executed near the beginning of the Story playback. 

Multi-threading Playback Engine Interface 

The SPE creates its own cooperative multi-threading runtime system. The interface to the 
playback engine consists of two functions. The function voidJnitStoryPlayback(void) is called once, then 
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SINT StoryPIaybackCycIe(void) is called repeatedly in a loop so long as the return value is positive. An 
example loop used for a single threaded Windows 32 bit implementation follows: 

InftStoryPlaybackO; 

while (ORetumCode = StoryPIaybackCycleO) > 0) 
5 { 

myYieldO; 

} 



Notice that the myYield() call allows other Windows application functions an opportunity to run 
10 independently from the playback engine on the same host operating system (OS) thread that the 
playback engine is running on. The interface is designed this way so that the playback engine could ain 
on devices that do not have a host-based multithreading system. 

Run-time Requirements 

15 The Story compiler tools or Story author should ensure that no set of active threads can take 

more than 1/30 second before retuming to the main cycle loop when running on a SOOmhz Pentium (or 
equivalent) processor. This is to ensure that smooth video playback is possible on high end devices, and 
that non-Story features of a device controlled by the CPU will still be able to have a responsive user 
interface. 

20 

Speed 

Optimize individual functions invoked using single flag change automated by the release flag. 
Speed of automated customized Story content generation is aided by having recursive indirection in the 
PBE for all input. 

25 

Compression Algorithms and Procedures 

Various compression/decompression schemes and algorithms are known in the art and may be 
utilized in conjunction with the invention. In one embodiment. Story Files encapsulate all multimedia 
content using just three fixed compressions schemes; however, support for all video and audio formats 
30 can be supported by transcoding files from these fomnats to a procedural Story representation at the time 
that Stories are created. 

In one embodiment of the Invention, LJ^SS compresskMi is typically used for Text, Native 
Executable code. Story Format Code, and some Discrete tone pictures. ADPCM is used for two-channel 
Music and one-channel voice. Discrete Cosine Transforms (DCT) are used for continuous tone pictures 

35 and corrections for motion compensation equivalent functionality provided by use of Story instructions 
which result in the copying, of rectangular areas from exiting pictures to ones being built by the Story 
procedures. Graphics operations are advantageously handled procedurally. For motion compensation 
equivalents, compression of video streams can be encoded as a sequence of compressed isolated 
frames, but taking advantage of the redundancy between adjacent frames normally improves the 

40 compression effectiveness by a factor of about three. Story Instructions can be used to move any 
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rectangular area of any existing uncompressed picture to anypface in a picture buffer into which a new 
picture is being decompressed. This rectangular area can sen/e as the starting point for corrections 
applied using Inverse Discrete Cosine Transform (IDCT) results. To perfomn these operations there are 
Instructions to move rectangles, average source rectangles with the target pixels, and add IDCT results 
5 to target 8x8 pixef areas in the target picture buffer. 

A picture operation (PICTURE_OP) instruction with flags is provided to indicate to move a 
rectangle from a source picture buffer to a target picture while applying unary, binary, filtering, scaling, 
rotating, and/or fading operations to the source and target pixels. 



10 Special Effects 

Special Effects may also be accommodated, including internal animation, compositing, 
translations, rotations, fades, seating, and the fike. PiCTURE^OP instruction will be able to perfomi 
compositing, rotations, fades and scaling similar to Macromedia Flash technology, but using pixel 
graphics operation in addition to the mainly vector graphics operations of Flash. Translation can be 
15 performed as part of the DESCRIPTOR_OP and LAYOUT_OP instructions. 

Coding Ruies/Conventions 

Master Story Configuration File (stConfig.h) With Single Release Define 

The Portable Playback Engine will become part of many applications across many platforms. 

20 Conveniently, steps are taken to document and maintain version release control for the story playback 
engine. Embodiments of the inventive system used a two-fold approach. First, as many aspects of 
building a release will be automated as much as possible. This ensures that there is a way to determine 
exactly what files and actions are used to build each release. Also, it reduces the likelihood of making 
simple human mistakes. Second, each build will be dependent on making one #defined release-specific 

25 symbol have the value one and all other #defined release symbols have the value 0. All other build level 
and type related #defines will be automated based on the release symbols. See the stConfig.h file to see 
how this is presently done. No make system or build environment #define equivalents should generally 
be used, as this makes it difficult to set up new compiler and platform builds without a lot of auxiliary 
information. All source files should desirably be included in each build. Files that should not be 

30 contributing code to the release should use #defines ultimately based on the #define release symbols to 
decide whether the code for that file needs to be generated or not. This may result in many files 
compiling into effectively null object files, but modern the compilers and linkers will not waste much time 
on these, it should be noted that the Playback Engine code is pretty small and compiles and links pretty 
fast even with all these build rules. 

35 ' ' ^ 

One Global Stmcture Facilitates Speed And Small Code Size 

Global variables are a bit more efficient in terms of code size and execution speed, but having 
a lot of global variables will create problems when we want to make a C+'i- object out of the playback 
engine code. Although C++ is not as efficient as C code, C++ compatibility is desirable because it will 
40* , make it easier to integrate into C++ applications. Also. C++ makes it easy to build applications that 
require multiple instances for the player, such as authoring systems. Besides the efficiency Issues, we 
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should preferably not use C++ for the core portable engine code because we want the playback engine 
code to run on Digital Signal Processors for which there may not be C++ compilers available. 

To maintain compatibility for both C and C++ and to take advantage of the efficiency of global 
variables, the SPE code contains exactly one Global Variable. That variable, "p" is of type 
STORY_PLAYBACK_TYPE. (The STORY_PLAYBACKJYPE Is defined in stTypes.h.) It is a multi- 
levei structure containing all the individual variables used throughout the SPE code. One may note that 
many functions, in particular the op-code specific functions, do not take any parameters or return any 
values. Instead everything is passed in the global, "p". This eliminates the code and execution time that 
it takes to pass and return parameters. 

When it is desired to make a C++ Story Playback object out of the SPE Code it is only 
necessary to-tnake V 'a Tnember variable of ihe Story Playback object dass, and make the Core engine 
functions member functions. 

A side benefit of having one global variable is that it makes looking at variables in a visual debugger 
very easy since you only need to have one variable in a watch window and all the tenninal variables are 
organized logically by structure. 



Special File Types 

The portable files should preferably not use any C or C++ variable types directly. Instead it is 
preferred to always use one of the Story Types as typedef ed below in a code fragment that Is compiled 
in when USE_32BIT_VISUAL_C_PLUS_PLUSjrYPES is not zero. 

Fixed Size and Alignment of Data 

We have chosen to use 32-bit variables wherever possible. Most of these are unsigned 32 bit 
variables of type SU32, but where It is necessary to have signed numbers then we use the S32 type. 
Using these sizes makes for less conversion code on most platforms and reduces the types of errors that 
show up when porting to different. platforms. 32 bits was also chosen because it can represent a wide 
range of values, and on most processors, variables on 4 byte boundaries result in efficient data 
accesses. 



TABLE 3. Exemplary Embodiment of File for Story Code Root Data Types 

r This file defines all the root data types for portable Story code *l 

#if USE_32BIT_V1SUAL_C_PLUS_PLUS_TYPES 

typedef unsigned char SU8; 

typedef unsigned char *PSU8; 

typedef unsigned int SU32; 

typedef unsigned int *PSU32; 

typedef signed char S6; 

typedef signed char *PS8; 

typedef int S32; 

typedef int *PS32; 
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typedefSU32SBOOL; 
typedefvoidSVOID; 
typedefvoid *PSVOID; 

#endif USE_32BIT_VISUAL_C_PLUS_PLUS_TYPES */ 



Run-time System. System Start-Up, and Instruc^on Processing 

In another aspect, the invention provides a system, device, method, computer program, and 
computer program product for cooperative application-level multi-thread execution including instruction 
5 retry feature upon identifying constrained system .rBsource. Jhis aspect -is now described in greater 
detail. 

Initialization of Variables and Main Memory 

The one global variable "p" Is initialized to all zeroes when void lnitStoryPlayback(void) is called 

10 before the first play cycle. Also, the one memory block allocated by the HalAllocateMainMemoryBlockQ 
call in the InitOpO function is zeroed just after it is allocated. Knowing that all variables and main memory 
start with a zero value eliminates the need to have code to initialize individual values, and makes the 
code more robust because it always starts in a known state. Many variable values, such as thread states 
are defined so that a zero value represents the initial state desired. Likewise the pointer table to buffers, 

15 and all buffer memory can be assumed to initially have zero values. Note that the CreateBufferOpQ 
function does not zero the buffer memory. If the same buffer is created a second time, then the header 
and data of the buffer will still contain its old values until these are explicitly specified. Another exceptidn 
to the zeroing aile is the stack and input buffer for thread 0. One should not assume anything about the 
starting state of the stack and input buffer memory contents for thread 0. This is done on purpose so that 

20 thread 0 can run the first INIT^OP instruction that does the allocation of the one main memory block. . 
Also, because they are not zeroed, the stack and input buffer of thread zero can be used to retain state- 
when the main memory block is reinitialized over and over again by multiple INIT_OP instructions. 

Story File Packing and Unpacking 

25 Logical Story files contain a part of a final packaged Story File. Logical files are accessed by 

the portable code, not by name, but rather by a number pair, the content ID (contentld) and the current 
file number (currentFileNumber). By convention, the contentld identifies like data types. For example. 
contentld=0 Is nonmally used for the main startup and control procedures, while contentld=2 is used to 
store pictures and video. Separating like data into separate logical files allows for better compression 

30 and quicker access to consecutive data due to the file caching techniques employed by many device file 
systems. 

Story Procedural Sequences and Story Instruction Processing 

Story Content is encoded as sequences of 32-bit unsigned values. Each value represents 
35 either an op-code or an op-code parameter. The next value to be accessed is pointed to by an 
instruction pointer (IP). In one embodiment, content or story playback begins with the Instruction Pointer 
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(IP) pointing to a value that represents an op-code. Playback then proceeds according to steps (a)-(f), 
as follows: 

(a) The value of the op-code pointed to by the IP is fetched. 

(b) The IP is moved to point just past the op-code. 

5 (c) The value of the op-code is used as an Index into an array of function pointers to call a C function 
that implements the op-code function. 

(d) The function then fetches the op-code specific parameters which follow the op-code. The IP pointer 
is advanced as each parameter is fetched. 

(e) The number and type of parameters is specific to the op-code. The number and types of parameters 
dD following .the first.can.changebasedon :the.valuesof previous-parameters. 

(f) When the C function for an op-oode is finished performing the instruction it returns a status code. 
Most instructions will return a code with the value. SLICCESS_RETURN_CODE (which has the value 0). 

Ston^ Playback Engine Threading And Svnchronization 

15 Each Story Playback Engine (SPE) thread executes one sequence of instructions/parameter 

values. Each thread has a context, which includes its own IP, a stack mostly used for calling Story 
subroutines, and an input buffer to hold the sequence of values as it is executing. The input buffer can 
be tied to a spedfic file that holds the thread's sequences of Instructions that are not resident In memory. 

When a Story Begins playback a fife with cpntentlD of 0 Is automatically opened and the first 

20 thirty-two 32-bit words are read into Story thread number O's input buffer. It is then up to the procedural 
sequence in the first thirty-two words to boot-strap the rest of the Story playback, including allocating all 
buffer memory and the creation of other threads. All threading and synchronization of the actions of 
threads, for example synchronizing a thread that is playing audio and another, that is playing video, Is 
performed using a very lightweight technique we call, "Instruction Retry Upon Resource Constraints." 

25 Normally, the C language functions that implement individual opcode's functionality return with a status 
equal to SUCCESS_RETURN_CODE, but other retum code values can be returned. 
YIELD_TO_NEXTjrHREAD_RETURN_CODE will be returned when it is time for the thread to give up 
control of the CPU and move on to the next thread. RETRYJNSTRUCTION.RETURN^CODE will be 
returned when an instmction cannot perform the operation called for by the op-code and its parameters 

30 because it encounters a resource constraint. One example of a resource constraint situation is when a 
TIME__OP op-code that is set to wait for a particular time to occur, but it is not that time yet. In this case, 
the op-code returns the RETRYJNSTRUCTION^RETURN^CODE. When the outer instmction 
dispatch loop sees that an instruction returned such a code, it resets the IP for the thread to point back to 
the op-code it just tried to execute. Then it starts up the next thread. After all other threads have had an 

35 opportunity to run, the TlME_OP thread will run again and try to execute that same instruction again. In 
this manner the thread will effectively wait for a resource, the time at which to continue the sequence, to 
occur without blocking the other threads. Similarly, a thread can wait to decode a picture into a particular 
buffer until another thread empties the buffer and releases It for use by other threads. 

Each thread always has exactly one of the three states defined below: 

40 /* Thread context states */ 

#define UN1NITIALIZED_C0NTEXT_,STATE 0 
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#define RUNNING_COhJTEXT_STATE 1 
#define SUSPENDED^CONTEXT^STATE 2 



Memoiv Allocation 

6 Memory allocation is done as part of the functionality of an INIT_OP instruction. Except for the 

Input and Stack buffers of thread 0, all memory that is to be used until another INIT^OP instruction 
reallocates (and thereby destroys all past memory allocations) is desirably allocated as one big main 
memory block allocation performed during the execution of the INIT_OP. From within this main memory 
block, buffers are created to hold pictures, audio samples, subroutines, text and even the stack and Input 

10 infbnrjation for all but the very first thread. Allocating memory in this manner allows for security checks to 
be perfonned with a small amount of code, and avoids the need for any complex and lengthy garbage 
collection algorithms. 

Thread O's stack and input buffers are allocated by the C compiler as a static array of 
characters inside of p. This allows the first thread to run even before any memory allocations are 
15 performed. Thread O's static buffers can sen^e as a place to save parameters that you want to survive a 
new INIT^OP memory allocation. 



Buffers 

The INIT_OP that performs the main memory block allocation also sets aside an array of 
20 pointers to a set number of buffers to hold Story playback data. The array of buffer pointers resides at 
the top of the main memory block allocation. They are initialized to zero, as is all memory In the main 
block. CREATE_BUFFER_OP instmclions are used to create buffers from within the main memoiy 
block. Each buffer is created with a maximum size in bytes, including space for a buffer type-specific 
header that precedes that actual buffer data area. The header is pointed to by an entry placed Into the 
25 array of pointers. The index of the pointer In the an*ay is the buffer number. The type of header is 
determined by a 32-bit properties field at the same beginning offset of all buffer headers. The rest of the 
fields in the header are specific to the particular property value. Buffers types are indicated in the 
property field as a buffer kind value specified by a #defined value that ends in the suffix, 
-_BUFFER_KIND". 

30 All buffer headers and data elements should be aligned on four-byte (or other predetermined 

size) boundaries for efficiency of access and portability reasons. So, for example, a 
TEXT_ASCILARRAY_BUFFER_KIND buffer that contains three one-byte elements must also have one 
padding byte on the end so that the total size is a multiple of 4 bytes. Similarly, picture buffers should 
have the distance between rows of pixels always be a multiple of 4 bytes, even if the picture is not a 

35 multiple of 4 pixels wide. 

There are two generic types of buffers: singletons and arrays. Arrays have a common array 
buffer structure as part of each buffer header immediately after the common buffer structure. An array 
can be used to hold any type of data, but each element in the anray list should be exactly the same size 
as every other element in the anray. Array element size and the number of cunrent elements in each 
40 anray are specified using an ARRAY_OP instnjction and stored in the common anay structure part of the 
buffer header. By convention, all buffer kinds that are arrays end in the suffix, 
-_ARRAY_BUFFER„KIND". 
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In one embodiment of the invention, the Singleton Buffers include: 
PICTURE_RGB_BUFFER_KIND, 
PICTURE JAJV^BUFFER.KIND. * 
AUDIO_8000_PICTURE_BUFFER_KIND. 
5 AUDIO_44100_PICTURE_BUFFER_KIND. and 
INPUTJTHREAD.BUFFERS.BUFFER^KIND. 

Each of these Singleton buffers are now described. In one embodiment, the 
P!CTURE_RGB_BUFFER__KIND has R, G, B and alpha, but other formats and structures as are known 
in the art may also be used. In one embodiment, the PICTURE_YUV_BUFFER_KIND has three planes in 
1 0 4:2:0 Y Cb Cr format flike "WPEG 1 and JPEG). Each active Input thread, other than thread 0, needs to 
have a single buffer associated with it to hold both the stack and Input buffer. How much of the buffer 
data is assigned to each is detennined by parameters to the THREAD_OP instruction, but in no case 
should either buffer be less than 4 bytes in size. 

15 Anrav Buffers 

In one embodiment, seven array buffers are provided, they are: 
DISPLAY_DESCRIPTOR_ARRAY_BUFFER_KIND. 
HOTSPOT_ARRAY_BUFFER_KIND, 
. TEXT_ASCII_ARRAY_BUFFER_KIND, 
20 TEXT_UNIC0DE_ARRAY_BUFFER_K1ND, 

EIGHT_BIT_VARIABLE_ARRAY_BUFFER_KIND, 
THIRTY_TWO_BIT_VARIABLE__ARRAY_BUFFER_KIND, and 
SUBROUTINE_ARRAY_BUFFER_KIND. 

25 Indirection, Indirect Linking. Recursive Indirection, and Nested Indirection 

All op-code and parameter values that are fetched from a thread's input buffer can specify 
indirection. Rather than containing a value for use, when indirected, the value fetched from the Input 
buffer specifies how to get a value to use. The top two bits of each 32-bit value in the input buffers are 
"01" when used for indirection. Any op-code or parameter values that have the top two bits "01" that are 

30 not intended to indicate indirection, should be encoded as an IMMEDIATEJNDIRECTION value (top two 
bits are "Or, other bits have the combined value of 2) followed by the actual value. Many of the 
indirection values must be followed In the Input stream by other parameters that help to specify the actual 
target value. Using the two top bits al.k)ws one to have a 30 bit range of two's-complement numbers that 
do not generate bit patterns that could be mis-interpreted as an indirection. Note that it Is important to 

35 use at least two bits to indicate indirections. For example, a scheme using only the top bit would not be 
able to represent even small negative numbers without the need for an IMMEDIATEJNDIRECTION. 
Indirect scalar values are used to reference individual 32-bit values and in one embodiment include the 
following: 

#define INDIRECT_BUFFER_NUMBER 0x040000002 
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#define INDIRECTJARGET_BUFFER.NUMBER 0x040000004 
#define INDIRECTJTIME 0x040000005 
#define INDIRECTJMMEDIATE^VALUE INDIRECT.BUFFER.NUMBER 
#define INDJRECT_RECTANGLE_ELEMENT_VALUE 0x040000001 
5 Indirect array values are used to reference values inside an array buffer and data area and include the 
following: 

#define INDIRECT_ARRAY_VALUE 0x040000000 
#define INDIRECT JVRRAYJ/ALUE_AT_OFFSET 0x040000003 

Indirect- rectangle values are used to reference Individual sets of four 32-bjt values representing the x.y 

1 0 location and width and height of a rectangle and include the following: 

#define IMM ED lATE^RECTANGLE^S ELECTOR 0x40000003 
#define LAYOUT„BOUNDING_RECTANGLE_SELECTOR 0x40000004 
#defineHAL_VISABLE_BOUNDING_RECTANGLE„SELECTOR 0x40000005 
#define LAYOUT_RECTANGLE_SELECTOR 0x40000006 

15 #define PICTURE_BUFFER_MA(N_RECTANGLE_SELECTOR 0x40000000 
#definePlCTURE_BUFFER_DlSPLAY_^RECTANGLE__SELECTOR 0x40000001 
#definePICTURE_BUFFER_ACTIVE_RECTANGLE_SELECTOR 0x40000002 

Indirect post-operations are used to perform calculations of a wide variety of possible arithmetic and/or 
logical expressions. Any op code can have any mathematical expression of almost any complexity using 
20 this feature, indirect post^operatlons include the following: 

#define INDIRECT_POST_OPERATION_SELECTOR_FLAG 0x40000000 
#define CHANGE^RELATIVE JMMEDIATE^RECTANGLE^FLAG 0x0001 0000 

Indirect Linking is one of the most powerful uses of indirection and automatically links Story 
Segments (procedural sequences of op-codes and parameters that perfonn specific tasks) into working 

25 Stories in which all the Segments interact. When used in a story message based email messaging 
system (StoryMail), this allows the StoryMail server to generate a multitude of custom Story format 
' messages, each optimized on the fly to confonm to device capabilities and user preferences, just by 
concatenating the right mbc of Story Segments into logical Story files and then top-level compressing and 
packaging those logical files into a Story file. Because the Segments link themselves using redirection at 

30 • the time that the Story Is played, there is no need for the Server to perform complex an inefficient 
relocation and linking operations. Thus indirection allows a single message generating server to 
generate many times as many messages per given unit of time, advantageously reducing the number 
and cost of servers needed to implement a customizing message email system for a given amount of 
traffic. 

35 Recursive Indirection is also supported. An indirect value can refer to another indirect value, 

this is referred to as recursive indirection. To guard against native processor stack overflow, in one 
embodiment, the recursion is limited to 16 levels, but this is not a fundamental limitation to the inventive 
method. Recursive indirection using post operation features can be used to specify a wide range of 
mathematical expressions involving a multitude of operations and values for any parameter. It would be 
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an unusual use, but even the opcode value can be derived from the use of recursive indirection, allowing 
dynamic code generation. 



Display Layout 

5 Like many other aspects of stories, the screen layout of displayable elements is perfomried 

procedurally. The following steps are commonly used in different aspects of the inventive method and 
procedures: 

1. Each element to be rendered is assigned to a display descriptor (Display Descriptor) element of a 
display desalptor (DIsplayDescriptor) anay buffer. This Is done using the display descriptor operation 

10 (DISPLAY_DESCRIPTOR_OP). Each display descriptor contains a buffer number that contains the data 
to be displayed (e.g. a picture buffer number). 

2. The set rectangle operation (SET_RECTANGLE_OP) is used to set the layout rectangle 
(layoutRectangle). 

3. The layout operation (LAYOUT^OP) is used to place a list of display descriptors (DisplayDescriptors) 
15 inside the layout rectangle (layoutRectangle). The horizontal center then vertical center layout method 

(HORIZONTAL_CENTER_THEN_VERTICAL_CENTER_ LAYOUT^METHOD), may for example, among 
other possible methods be utilized. 

4. The layout rectangle (layoutRectangle) is reset to layout something else according to the results of a 
previous layout operation (LAYOUT_OP). 

20 5. If there are more elements to be laid out then the set rectangle operation (SET_RECTANGLE_OP) is 
applied for each element. 

Branching flags are set if a LAYOUT_OP operation found that an item does not fit at all. did not fit 
horizontally and was wrapped to fit below, and if the layout went outside the layoutRectangle in the 
vertical direction. Jump instnjctions can therefore be used to perfomri complex procedural layout 
25 operations. 

Logical Element Hot Spot Array 

Hotspot array buffers contain elements called hotspots that contain information about a logical 
element of a message. This information includes a set of flags indicating the type of element 
30 represented, an optional buffer number that holds text describing the element, and an optional buffer 
number that contains a subroutine to be executed if the element is selected by the user. Example 
hotspot flags are the: - 

SELECTION_SUBROUTINEJWAILABLE_HOTSPOT_ELEMENT_FLAG. and 
VISABLE^HOTSPOT^ELEMENT^FLAG. 

35 If these two flags are set in a hotspot. then that hotspot occupies a rectangle on the screen, and the 
user can select that hotspot. If the user selects the hotspot the subroutine in the buffer number contained 
in the hotspot will be executed. 



Run-time Securitv.Conventibns. and Threaded Model 
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Run-time security is advantageously provided in order to prevent viruses or malicious software 
code from being encoded as a story or as a side effect from being played as a story. Security is afso 
intended to protect against crashing or hanging the target device as a result of a incorectly generated, 
corrupted story or story impersonator. Techniques for providing such security such as the memory 
5 allocation procedures, using a small number of memory buffers, "sandboxing" and other techniques are 
described elsewhere in this application. 

In a preferred embodiment of the Invention, there can be up to 8 active threads in a Story. 
Each thread is addressed as an index from 0 to 7. Thread 0 is special because it has its own statically 
allocated stack and input buffer located outside of the main memory block. Also thread 0 is always 
10 started automatically when Story Playback begins. All the other threads, 1 through 7. are logically 
equivalent in operation, but should follow the following usage convfintfonsin order to allow for^ood reuse 
of Story Segments and subroutines. Following this convention also results in more reliable programs 
because the design ensures that playback of multimedia Stories is largely deterministic. Conventions for 
threads are listed immediately below: 
15 /* Convention for threads */ 

#define MAIN__CONTROLjrHREADJNDEX 0 
#define HALJNPUT_THREADJNDEX 1 
#define PICTURE_DECODE_THREADJNDEX 2 
#define PICTURE_DISPUVY_THREADJNDEX 3 
20 #defineAUD{0_DECODE_THREADJNDEX 4 
#def/neAUDI0lPU\Y_THREADJNDEX 5 
#define SPECIAL_EFFECTS_THREADJNDEX 6 
#defineAUX1_THREADJNDEX 7 

Content ID (contentid) values are described above and in one embodiment, include, but are not 
25 limited to the values listed below. 

#define CONTROL^FILEJD 0 
#defineAUDIO_FILEJD 1 
#define PICTURE_FILEJD 2 
#defineTEXT„FILEJD 3 

30 

Semantic Flags or other indicators and text are provided as backup behind every logical 
element to support content and media-richness scalability. Although the presence of text and semantic 
flags is not enforced by the run-time code, all elements key to the intent of a Story message should have 
these since they will allow the message to play in any device or be automatically read or operated using 
35 only an audio phone call. In general, before playing back rich media, the Story Message should 
procedurally check that the device has the capabilities and resources necessary to play back the rich 
media elements used. If the device cannot support the rich media playback, then a less-rich media 
version of the message should be played. If no rich-media versions can be played, then a text version 
should be played as a lowest common denominator representation of the Story Message. 



40 
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Exemplary Story Instruction Types and instruction Set 

An exemplary Instruction set is now described. It will be understood that this instruction set and 
the operation codes (op-codes) and op-code values associated with it are exemplary and not limiting of 
the invention. It is described to assist in understanding the structure and function of the stories, the 
5 manner in which they are generated, and the manner in which they may be played or rendered on a wide 
range of devices. It is also to understood that some operation codes may be eliminated and others 
added. 

Op-codes are small positive numbers that correspond to programmatic Story operations that, 
are carried out by a specific C function that normally has a name based on the op-code name. Story 

10 Instructions are opcodes followed by whatever parameters will be expected by the op-code's C language 
-implementation function during its execution, in generalihe parameters needed to follow each op-code 
are op-code specific, and in fact the parameters expected can depend on previous parameters in any 
way that can be implemented programmatically in the C functions that implement the op-code 
functionality and parameter indirection. So parameter use can be complex, but there are some rules and 

15 conventions. 

Firstly, most op-codes can perform a sequence of sub-operations. Each sub-operation may or 
may not be optional; however, the order of sut)-operations is always processed in a given order. In 
general op-codes that have optional sub-operations are indicated by the first parameter that follows the 
op-code number. This parameter Is a "Flags Parameter". The Flags Parameter contains a set of 
20 predefined bits, one for each sub-operation. In preferred embodiments of the invention, a convention is 
established such that the flags are always numbered in the order that the op-code's C function will 
execute sub-operations, and retrieve sub-operation parameters from the input buffer. Also, the sub- 
operations are always executed from lowest order bit to highest. Different conventions may atternativety 
be adopted. 

25 Memory access with indirection as provided for in some embodiments of the invention is a 

novel approach, particularly when used with a JUMP_OP operation to an absolute offset. 
Conventionally, relative addressing is provided for in addition to absolute addressing. In embodiments of 
the invention, one can specify an initial position of the program counter (PC) as an indirection, then 
specify that the indirection involves a post-operation. Thus all absolute addresses can be used for 

30 relative addressing, and multiple forms of addressing are not required, yet the functionality Is provided. 
This same technique can be applied to other ordinarily absolute op-code parameters such as to provide a 
relative time to wait in a TIME_OP parameter. 



Table 4. Selected Exemplary Op-Codes and their Description 



OpCode Type/Name 


Description 


Initialization 
Op-codes 




INIT OP 


Initialize hardware and/or Initialize main memory allocation 


LOAD^OP 


Load input data from the logical file into the thread's input buffer 
and/or a memory buffer. 


Branching Op-codes 




JUMP OP 


Transfer control to a different section of the procedure. 


END OP 


End the subroutine and return control to the caller. End the thread if 
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OpCode Type/Name 


Description 




there is no caller. 


THREAD OP 


Create or modify a new or existing thread's status or procedure. 


YIELD_OP 


End current thread's current execution to allow other threads to run 
until this thread's turn to execute again. 


CALL SUBROUTINE OP 


Call subroutine. 


Memory Op-codes 




CREATE^BUFFER_OP 


Create or modify a buffer inside the main memory allocation and/or 
sets its characteristics. 


DECOMPRESS_OP 


Starts execution of a subroutine in a specified logical file after setting 
a target buffer. 


PICTURE BUFFER OP 


Sets or modifies characteristics of a picture buffer. 


SET RECTANGLE OP 


Change or sets a rectangle's values. 


HOTSPOT OP 


Change information inside a hotspot buffer. 


ARRAY OP 


Change information inside an an^y buffer. 


Calculation Op-codes 




COMPUTATION OP 


Perform arithmetic and/or logical expression computation. 


Display Op-codes 




DISPLAY_DESCRiPTOR_OP 


Modifies values in display descriptor element. 


LAYOUT OP 


Perfonns a layout operation on a set of display descriptors. 


DISPLAY OP 


Causes the data in a buffer or set of buffers to be rendered. 


Time Op*codes 




TIME.OP 


Sets time value» the time mode, and other time operation 
characteristics. 



10 



Exemolan^ Ston^ Instruction Types and Instruction Set Parameters 

The parameters for COMPUTATION_OP define an Operation and have a SourceValuel. If 
(Operation&1==0) then there is a second parameter, SourceValue2. The parameters also identify a 
destination for the final computational result. For Computational Operation value defines, the low bit is 
used to determine how many parameters an operation needs. If the low bit Is 1 then only 1 parameter is 
needed, else two parameters are needed. The following provides examples of Unary and Binary 
operations. 

r Unary computational operations (must be odd) */ 

#define COPY_COMPUTAT10NAL_OPERAT10N 1 
#define BITWISE_NOT_COMPUTATIONAL_OPERATION 3 
#define TWOS COMPLEMENT NEGATE COMPUTATIONAL OPERATION 5 



15 /• Binary computational operations (must be even) */ 

#define BlTWlSE_SHIFT_COMPUTATIONAL_OPERATION 
#define B!TW1SE_AND_C0MPUTATI0NAL_0PERATI0N 
#define BITWISE_OR_COMPUTATIONAL_OPERATION 



0 
2 
4 
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#define BITWISEJCOR^COMPUTATIONAL^OPERATION 6 
#defineADD_COMPUTATIONAL_OPERAflON 8 
#define SUBTRACT_COMPUTATIONAL_OPERATION 10 
#define MULTIPLY_LO\ALCOMPUTATIONAL_OPERATION 12 
5 #define MULTIPLY^HIGH^COMPUTATIONAL.OPERATION 14 

#define DIVIDE^COMPUTATIONAL^OPERATION 16 

User Input Op-codes are also provided and include the HAL_PROCESSING_0P instruction 
opcode. It does not require any op code parameters. When the HAL_PROCSSING_OP C function runs, 
10 It calls the HAL function, void HalProcesslnput(void) during which user input will be processed. The 
HalProcesslnputO function can respond to user Input by calling void UtilCaHSubroutine(SU32 
u32_SubroutineBufferNumber), so that the indicated Story subroutine will run Immediately upon return 
from the HAL^PROCESSING.OP instruction's C function. For example, the HAL PROCESSING OP 
instruction Is normally used in a looping sequence on the Input thread (thread 1 by convention), such as 
15 the procedure: 

HAL^PROCESSING^OP 

YIELD_OP 

JUMP_OP{LOGICAL_OFFSET(0)) 
The HAL function can use this call to look for any user input, such as for example, the user selection of 
20 a button corresponding to a hot spot 

Having now described a variety of features and characteristics of embodiments of Story Files, it 
will be apparent to those having ordinary skill in the art in light of this description that the invention 
provides numerous innovations and advantages over conventional systems and methods. By way of 
highlighting selected ones of these innovations, the characteristics of several are described Immediately 
25 below. 

Single Languape Instructions for Wide Range of Applications and Devices 

The invention further provides a system, device, method, computer program, and computer 
program product for a hardware architecture neutral computer program language and structure and 
30 method for execution. 

Embodiments of the story file format, story organization, programming language conventions, 
run-time playback engine, and the like have been described in considerable detail above. These and 
other features of the inventive system, separately and in synergistic combination provide powerful yet fast 
and efficient message communication features. In addition, these features are adapted for single 
35 language implementation over a broad range of application programs, application platforms, operating 
systems, and devices. 

In a preferred embodiment of the invention, a single computer programming or code language 
is used for all instructions and procedures in all story applications and devices. By way of example but 
not limitation, this common language set of instructions is used for (i) navigation, (ii) decision making, 
40 scaling, (iv) decompressing, (v) setting, using, and calculating parameters, (vi) generating other data 
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10 



15 



20 



25 



30 



35 



and/or procedural streanris; (vii) parsing, formatting, and selecting text and other media elements such as 
images, graphics, and audio; (viii) responding to item selection by a story player user, (ix) requesting 
further files during streaming, (x) formatting XML (or XML extensions); (xi) formatting text; (xii) 
performing; validation of user input; (xiii) performing calculations, simulations, animations, special 
effects, signal processing, run-time scaling (e.g. scaling of pictures) and synchronization tasks, and the 
like. Advantageously, this single language set of instructions is compatible with and inter-operates with 
the cooperative threading model described elsewhere in this specification. 

Note, that the playback engine or processor can be Implemented as hardware or 
software/firmware/micro-code or a combination of hardware and software/firmware/micro-code and that 
the invention provides a method independent of the particular computer code structure involved. The 
entire processor can for .example, he .implemented in..hardwaie with -a -hardware -instruction set The 
preferred embodiment of the playback engine is implemented in software so that it may be implemented 
on any hardware platfomn and be adaptable to various hardware platforms that we designed and/or made 
before the story file format, system, and metiiod were available. At least some embodiments of the 
Invention may be implemented using a complex instrudion set suitable for a specialized processor. 

The system is platform portable and may readily be integrated with or adapted to many 
computer, telephone, personal communicator, personal data assistant (PDA), point-of-sale display, 
venting machine, various interfaces, and almost an unlimited variety of electronic devices or machines 
having electronic components capable of executing the story playback engine code. It is therefore highly 
architecture neutral. The user interface is not constrained and may be readily adapted to a variety of 
system, software, operating system, and device input/output interface characteristics. For example, the 
input and/or output may separately or together be visually based, audio based, tactilely based, or rely on 
any otiier human or machine sense. While the story Interaction is described in the context of filling out a 
fonn. it will be appreciated that this form can be of any variety and need not be text, graphical, or visual. 
It may instead, for example, include articulated prompts and accept spoken user responses. It is 
therefore user access and perceptual neutral as users may access its capabilities over a telephone or 
any other communication device or system, and motor and/or sensor challenged individuals may readily 
access and perceive the results of such access. 

Therefore, it will be understood that the invention provides a hardware architecture neutral 
executable program structure for execution In a processor. (This Is an embodiment of a base program 
stmcture.) The program structure comprising: a plurality of instruction threads selected from a library of 
possible instmction threads; a plurality of data parameters integrated among at least some of the 
instruction tiireads and influencing execution of the instruction threads; and at least some of the selected 
instruction threads being adapted for cooperative execution with other of the instruction threads by 
yielding ownership of the processor upon the occurrence of a predetemilned condition. 

In one enfibodiment, the instructions comprise operation codes representing commands 
executable in a processor. In apotiier embodiment, the predetennlned condition comprises tine yielding 
instmction yielding after a predetermined time period of ownership. In another embodiment, the 
predetennined condition comprises the yielding instruction yielding upon determining that a required 
resource is constrained. Here, the program structure may be further defined such that the constrained 
resource is selected from the group consisting of a memory buffer, an input device, an output device, an 
input/output device, a digital audio processor, a display device, a communication link, a communication 
bus, a buffer, a data compression processor, a data decompression processor, a vertical refresh signal 




wo 02/10962 PCTAJSOl/23713 

128 

(so user does not see display screen refresh), a time limit being exceeded or not yet being exceeded, 
and combinations thereof. 

The program structure may also be defined such that the constrained resource is a 
constraining condition associated with the resource. The characteristics may for example be selected 
5 from the group characteristics consisting of: a buffer existing, a buffer not existing, a buffer being 
initialized, a buffer being uninitialized, a buffer holding a set of data, a buffer not holding a set of data, a 
buffer holding a subset of a set of data, a buffer not holding a subset of a set of data, and combinations 
thereof. Other characteristics may be selected from the group consisting of or including an input device, 
output device, or input/output device signaling that it is available, not available, has text, selection, 

10 location, texturai or other input data available or not available, and combinations thereof. Alternatively or 
in addition, the characteristics may be .selected from ihe group .of . characteristics consisting of: a digital 
audio processor, display device, a communication link, a communication bus, a buffer, a data 
compression processor, a data decompression processor, a vertical refresh signal being in a ready state, 
a vertical refresh signal not being in a ready state, condition where capacity or features are assured or 

15 not assured, and combinations thereof. Thus from the breadth and scope of these exemplary 
characteristics that may be used as the resource constraint, those woricers having ordinary skill in the ^rt 
will appreciate that many other alternative characteristics, devices, conditions and the like may be used 
with the inventive program structure, method, and computer program. 

In at least one embodiment, the response to data or commands, or other input from a user 
20 includes responding by causing a program subroutine to be executed on the thread in which the input, 
data, or commands are detected. 

The hardware architecture neutral executable program stmcture may also be defined such that 
instruction thread is selected from the group of instruction threads that: perform a navigation; make a 
decision; scale a data item; decompress a data item; set a parameter; use a parameter, circulate a 

25 parameter; generate data; generate a parameter or instruction stream; parse a data item; format a data 
Item; select a data item; test a data item; respond to an input; send messages; receive messages; 
receive responses to messages; request file from a server or other source; store data; perform 
calculations; perfonm an animation; perform signal or image processing; respond to a data or command 
from a user; send a message; request a file; request additional data In a data stream; request data and/or 

30 commands in a stream of data and/or commands; navigate; make a decision; scale; decompress; set, 
use, and calculate parameters; cause audio to be rendered, cause video to be rendered generate other 
data and/or procedural streams; parse, format, and select text and other media elements such as 
images, graphics, and audio; respond to item selection by a story player user; request further files during 
streaming, format XML (or XML extensions); fomiat text; validate user input; perform calculations, 

35 simulations, animations, special effects, signal processing, run-time scaling and synchronization tasks; 
and combinations thereof. 

It may be further defined such that the data items are selected from the set of data Items 
consisting of a digital image media data item, a digital audio media item, transition and special effects 
control data, and combinations thereof. 

40 Altematively, the program structure may be defined such that the response to a data or 

command from a user comprises responding to a command or data generated by a user button press 
firom a device Incorporating the processor. In another embodiment, the program structure may be 
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defined such that the requesting additional data and/or commands in a stream of data and/or commands 
comprises requesting additional ones of the instruction threads miegraied with the data parameters. 

The base program structure may also provide that the cooperative execution is under 
programmatic control. The basic program structure may also or alternatively be defined such that the 
5 predetermined condition is either CO yielding after a predetenmined time period of ownership, or 00 
yielding upon determining that a required resource is constrained, or (m) a combination of yielding after a 
predetermined time period of ownership, and yielding upon determining that a required resource is 
constrained. And this may be even further defined so that the resource being constrained comprises the 
resource being unavailable at the time access to the resource is required; or so that the predetermined 
1 0 time period of ownership is established programmatically. 

The program-stmcture -may-bexiefined suchthat'Bpredetermined'time period of ownership Is 
provided as a parameter within the message. 

In other embodiments, operation codes may for example, comprise integers and an association 
between the Integer and an operation is identified by a table look up procedure, the integers providing a 

15 compact representation of the operations. In yet other embodiments, the program structure may include 
an instruction thread retry attribute associated with at least some of the possible instruction threads, the 
retry attribute causing the processor to repeatedly retry to execute an instruction thread that has yielded 
ownership of the processor either (0 after a predetemiined time period of ownership, (iO after mnning alt 
of the active threads until each has yielded the processor, or (iiQ upon detemiining that a required 

20 resource is constrained. 

In yet still another embodiment, the base program structure may be further defined such that 
the instructions comprise operation codes representing commands executable in a processor; the 
predetermined condition comprises the yielding instruction yielding after a predetermined time period of 
ownership, or the yielding instruction yielding upon determining that a required resource is constrained; 

25 the constrained resource is selected from the group consisting of a memory, an input device, an output 
device, an input/output device, a digital audio processor, a display device, a communication link, a 
communication bus, a buffer, a data compression processor, a data decompression processor, a vertical 
refresh signal (so user does not see display screen refiresh), a time limit being exceeded or not yet t>eing 
exceeded, and combinations thereof; and the instruction thread is selected from the group of instruction 

30 threads that: perform a navigation: make a decision; scale a data item; decompress a data item; set a 
parameter; use a parameter; circulate a parameter; cause audio to be rendered; cause video to be 
rendered; generate data; generate a parameter or instruction stream; parse a data item; format a data 
item; select a data item; test a data item; respond to an input; send messages; receive messages; 
receive responses to messages; request file from a server or other source; store data; perform 

35 calculations; perform an animation; perform signal or image processing; respond to a data or command 
from a user; send a message; request a file; request additional data in a data stream; request data and/or 
commands in a stream of data and/or commands; navigate; make a decision; scale; decompress; set, 
use, and calculate parameters; generate other data and/or procedural streams; parse, format, and select 
text and other media elements such as images, graphics, and audio; respond to item selection by a story 

40 player user; request further files during streaming, format XML (or XML extensions); format text; validate 
user input; perfbnm calculations, simulations, animations, special effects, signal processing, run-time 
scaling and synchronization tasks; and combinations thereof. 
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In addrtion to the architecture neutral structure, the invention also provides a method for 
cooperatively executing a plurality of code threads in a processor, the method comprising steps of. (a) 
communicating a plurality of code threads, including a first code thread and a second code thread, to a 
processor for execution; (b) setting a program counter for execution of the first code thread; (c) allocating 
5 ownership of the processor exclusively to execution of the first code thread and executing the first code 
thread until the first code thread completes execution, except stopping execution of the first code thread 
and yielding ownership of the processor by the first code thread during the execution to the second code 
thread upon the occurrence of a predetermined first code thread yield condition; (d) if execution of the 
first code thread has been stopped, then storing an indication that execution of the first code thread has 

10 been stopped, including a program counter value for the stopped first code thread, In a storage location; 
(e) setting the program counter for execution of the second code thread; (f) allocating ownership of the 
processor exclusively to execution of the second code thread and executing the second code thread until 
the second code thread completes execution, except stopping execution of the second code thread and 
yielding ownership of the processor by the second code thread to any other one of the plurality of code 

15 threads upon the occurrence of a predetermined second code thread yield condition; (g) reallocating 
ownership of the processor and re-executing the first code thread according to predetermined processor 
ownership reallocation rules; (h) retrying execution of the yielded first code thread including setting the 
program counter with the stored program counter for the stopped first code thread and re-executing the 
first code thread; and (i) repeating steps (b) through (g) for each of the plurality of code threads until 

20 . each of the plurality of code threads has been executed. 

This method may be further defined such that the predetermined first code thread yield 
condition comprises yielding after a predetermined time period of processor ownership. Alternatively, the 
^ method may be defined such that the predetermined first code thread yield condition comprises yielding 
upon determining that a resource required for execution is constrained. Or, it may be defined such that 
25 the predetermined first code thread yield condition and the second code thread yield conditions are each 
selected from the group consisting of: fi) yielding after a predetemnined time period of ownership, or (ii) 
yielding upon determining that a required resource is constrained, and a combination thereof. 

Embodiments of the inventive method may further define the above method such that the 
cooperative execution of the plurality of instruction threads Is achieved by establishing the 
30 predetemnined time period of ownership of at least selected ones of the plurality of threads as a 
instruction thread execution parameter communicated with the instaiction thread. 

The invention also provides a method for cooperatively executing a plurality of code threads in 
a processor, the method comprising steps of: sequentially executing a plurality of code threads until a 
predetermined code thread yield condition is detected for a particular code thread; stopping execution of 

35 the particular code thread for which the thread yield condition was detected; storing an Indication that 
execution of the particular code thread was stopped before completion in a memory storage location; 
resuming sequential execution of the plurality of code threads at the next sequential code thread 
following the particular code thread; retrying execution of the particular code thread during the resumed 
sequential execution according to predetermined rules for preempting a next sequential code thread and 

40 retrying execution of the particular code thread In preference to a next sequential code thread. 

This method for cooperative execution may optionally provide that the step of retrying includes 
storing an Indicator for the preempted next code thread and retrieving the stored indicator for the 
particular code thread. It may further provide that the stored indicator for the preempted next code thread 
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comprises a program counter value for the preempted next code thread, and the stored indicator for the 
particular code thread comprises a program counter value for the particular code thread that was yielded. 
These methods may additionally include the step of resuming the sequential execution of code threads 
after the particular code thread has been executed by retrieving the stored program counter value for the 
5 preempted next code thread. 

The code thread yield condition may, for example, yield after a predetermined time period of 
processor ownership. The code thread yield condition may yield upon delemiining that a resource 
required for execution is constrained. The predetermined first code thread yield condition and the second . 
code thread yield conditions are each selected from the group consisting of: (i) yielding after a 
10 . predetermined time period of ownership, or (ii) yielding upon determining that a required resource is 
constrained., and a combination thereof. 

Cooperative execution of the plurality ' of instruction threads may in some embodiments, be 
achieved by establishing the predetennined time period of ownership of at least selected ones of the 
plurality of threads as a instruction thread execution parameter communicated with the instmction thread. 

15 Cooperative execution of the program instmction threads may achieved by detecting a 

resource constraint and returning a code to the instruction dispatcher to set the program counter to point 
back to the same retumed instruction before yielding to the next thread. 

The invention also provides for an instruction set for execution on a general purpose processor 
wherein the instructions are selected from those described herein. The invention further provides for a 
20 hardware processor implementing the capabilities desaibed herein to provide a very simple and low- 
power low-cost multi-media player (independent of story content itself) applicable to many things. The 
Invention further provides a multimedia player using the same or similar instruction set- Computer 
program and data structures as described are also included within the invention. 

25 Automatic Fast Generation of Customized Stories from a Flat File Input 

The invention further provides a system, device, method, computer program, and computer 
program product for autonomous generation of customized file having procedural and data elements from 
non-procedural flat-file descriptors. 

Story procedures, messages and applications are designed to be automatically and rapidly 
30 generated from inputs in flat file fomiat. For the purposes of discussion, there are three types of flat file 
input The first one provides or points to the one time content values and elements. The second flat file 
contains or points to the per-instance content values and elements. And the third flat file input is used to 
customize the final form of the message. It should be noted that any one of the input files may be 
sufficient for generating a Story, and that the contents of the different flat files may or may not include the 
35 same elements. In cases where the same elements are included, usually the last input to be applied 
takes precedence (but this is not a requirement). Also, the three types of information provided by the flat 
files may be combined into one. two or any number of flat files. 

• The typical steps for automatic Story or Story Mail based message generation according to one 
embodiment of the invention are now described. This description is then followed by a description of a 
40 system that implements the story based message generation scheme. 

(Step 1) The sender of the message selects a pre-prepared template that identifies the intent of 
the message. For example there may be ten different templates for creating various kinds of electronic 
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product promotions. Other examples are templates for creating meeting scheduling messages. 
Templates can be very spedfic, for example, a StoryMail company final patent approval notification 
message with animated pictures of the patent authors. And templates can be very general, for example 
a template for generating a message containing a picture with a caption. The sender could be either a 
6 person or a computer program that automatically specifies messages to be sent out. The story can be 
any type of application in story format and is not necessarily a message. 

(Step 2) The sender fills out a form using any of a number of possible user interfaces that 
conform to the template selected in Step 1. Form entries can be actual value and virord entries, actual 
rich media data, or pointers to the actual values, word entries or actual rich media data. 

10 (Step 3) The filled out form information gets converted to a computer structured flat file 

•suitable for parsing by other computer programs, ina preferred embodiment the structured flat file format 
conforms to XML standards or to one of the XML extensions. 

(Step 4) The flat file is fed as input into a template spedfic SEGMENTOR program. The 
SEGMENTOR program parses the flat file and reformats the infomfiation in the flat file or pointed to by 

15 the flat file into story procedural segments. Along with the segments themselves, the SEGMENTOR also 
outputs a flag selection value, a selected flag value, and properties of the segment. Such properties may 
include, but are not limited to, the width and height of a picture, the length of time of an audio stream, the 
color depth of a picture, and the liice. In order to convert known media types, such as MPS, to a story 
procedural representation of the same audio data, it may be necessary for the SEGMENTOR to pass the 

20 media types though programs designed to perform transcoding and properties extraction. These 
programs will be referred to as TRANSCODERS. 

(Step 5) All the segments and their properties are stored in a message database. 

(Step 6) For each instance of the message, a second flat file is used to provide customizing 
infomiation such as the receiver's first name, a list of receivers* first names, a customer Id. and/or other 
25 relevant infonmation. This file can be used by the SEGMENTOR to create additional segments along 
with their properties to be stored in the database. 

(Step 7) For each dient device or application for which the form of the message needs to be 
optimized or customized to best confonn to the capabilities and limitations of the device, communication 
connection or application, a third flat file is input to a program referred herein this document as a 
30 BINDER. Like the SEGMENTOR, the BINDER is also programmed or configured to confonm to the 
specific intent of the selected template. It is the job of the BINDER to select from and arrange the 
segments in the database into logical files according to the properties of the third fiat file input. 

(Step 8) The BINDER first uses the information in the database and the third fiat file input 
infomiation to set the values of a set of binary flags called the MASTER_FI-AGS. The MASTER^FLAGS 

35 will be used to select the segments that will be' induded into the logical files being created by the 
BINDER. For purposes of example, and to fadlitate understanding these procedural steps more clearly, 
assume the following conditions: (i) The SEGMENTOR has created a particular segment. A, that contains 
a story procedure to decompress a picture of a book (along with the compressed picture data that is part 
of the parameters to instructions that make up the procedure), (ii) Properties generated by the 

40 SEGMENTOR, though use of a TRANSCODER. indude the width and height of the picture, which are 
400 X 400 pixels respectively, (iii) The SEGMENTOR also generated a segment. C, containing a story 
procedure to place text that can be used as in place of the picture when rendering the message, (iv) It is 
desirable to keep the story file size small, so it is best if only one of these segments is included in each 
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generated story representation of the message, (v) Device E, which is to receive the message has a 
screen width of 100 pixels as indicated by the third flat file used to generate the optimized story message 
for that Device E, (vi) Device F, which is also to receive the message has a screen width of 600 pixels as 
indicated by the third flat file used to generate the optimized story message for Device F. In this 
5 example, the BINDER program sets a binary flag inside the MASTER_FLAGS to 1 if the infonnation from 
the third flat file indicates that the client device's max screen width is greater than or equal to the width of 
the picture^ as indicated by the properties stored in the database for the segment. The same binary flag 
is set to zero if the max screen width is not greater than or equal to the width of the picture. 

(Step 9) Once the MASTER_FLAGS have all been set, the BINDER program processes each 
10 segment in the database and associated properties in a predetermined order as follows: (Step 9a) The 
fla^ selection value stored in the database.as.a.pnoper^jof.lhe£egmentjs.logicallyANDed^wtth.the value 
stored in the MASTER_FLAGS. (Step 9b) The result from Step 9a is compared to the selected flag 
values value from the properties associated with the segment, (Step 9c) If the values compared in Step 
9b are equal, then the segment will be concatenated onto the end of the file identified by the logical flie 
15 number which is associated with the segment as a property in the database. 

(Step 10) Once all the segments have individually been rejected or selected and placed into a 
logical file, the logical files are compressed with a top-level compression scheme and packaged together 
into a single story file. 

(Step 11) Linkage between different procedural segments inside logical files and between files 
20 is handled using carefully formed segments that preferably but optionally use the Indirection mechanism 
of the story language implemented by the story playback engine software. 

• This methodology has numerous benefits. It has a low overhead for situations where a 
multitude of Individually customized message stories must be generated on the fly, such as for an email 
promotion. This is true because segments with a flags selection mechanism makes for fast servers that 

25 can generate a multitude of different story messages customized and optimized according to any 
playback situation's characteristics. Furthermore, logical files generated from MASTER_FLAGS with the 
same values will always be IdenticaL Therefore, logical files and even entire customized stories can be 
cached for qse and reused without the need to regenerate them whenever the MASTER.FLAGS binary 
flag values that effect the composition of a logical file are identical. Hence the MASTER_FLAGS. or 

30 subsets of the MASTER_FLAGS binary flags values can be advantageously used as caching keys. This 
is important because of the need to handle potentially millions of messages very fast on a single server 
(or small number of servers). 

The whole^'story procedural language and the way it is designed and implemented is important 
to pemnitting computers to generate them easily and quickly on a sen/er. In implementing an electronic 

35 mail system, for example, the mail system will handle millions of messages a day and it is desirable to 
provide only a minimum number of servers to satisfy the demand. It is important that it be fast so that 
even though there may be hundreds of millions of commutations and permutations for a single message 
to end up as a story based on Inputs, it is desirable that it run very quickly and that results be cacheable. 
The procedural language and in particular the indirection allows concatenation the story parts, which are 

40 very simple operations, and decide using flags as described in this document. The flagging mechanism 
is provided and permits performing very light weight calculations and assembling together the stories in 
all kinds of combinations and permutations without having to relocate alt the jumps between them and 
offsets and all those things that would be very computationally intensive and have inefficient mernory 
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access because it would jump all around. In one aspect it is a very linear process involving tlie 
concatenation of elements. There is no need to go back, to pluck, relocate or insert data in the middle of 
a story, which is very inefficient because of the caching of logical files or other data on the servers. The 
sever is basically making a lot of simple linear dectslons so that it ends up vwth a story that at story run- 
5 time links all of the parts together automatically. 

Having described aspects of a procedure according to one embodiment of the invention, 
attention is now directed to aspects of a system that implements the inventive procedure for automatically 
generating customized procedure-based story files from flat file descriptor input. 

With respect to FIG. 8, wherein there is illustrated an embodiment of a Story Compiler 

10 implemented on a computer, such as a sen/er. Sen/er (Story Compiler) 901 receives three kinds of input: 
(i) One-Time information Input 902/(2) Per-lnstance Information Input 903; Bnd (3) IJevice/Applira^^ 
Specific Information Input 904. Each of these three Inputs are flat non-procedural files. The Story 
Compiler Server 901 includes (or executes) a Segmentor Procedure (or Program) 905, a Binder 
Procedure (or Program) 906. and a Packaging Procedure (or Program) 907. The Story Compiler 901 is 

15 advantageously implemented as one or more computer programs executing on a general or special 
purpose computer system such as a conventional server; however, the functional blocks (Segmentor, 
Binder, and/or Packaging) may alternatively be implemented in specialized hardware with other different 
software and/or firmware. 

One or more Transcoder(s) 908 are desirably provided within the Story Compiler Server 901. 

20 though it may alternatively be provided external to the server. The Segmentor Procedure 905 receives 
the One-Time Information Input(s) 902 and the Per-lnstance Information lnput(s) 903. The Per-lnstance 
information Includes, for example, the address(es) that the message (story) is to be sent to. Note that the 
story may be sent to a multitude of addresses (people) so that the per-instance Information may include a 
plurality of addresses. The Binder Procedure 906 receives the Device/Application Specific lnput{s) 904 

25 for customizing the final form of the message. Device/Application Specific lnput(s) 904 include for 
example, screen size, processor speed, communication channel characterlsfics, memory, and other 
device or application specific parameters as are described elsewhere in this spedfication. The 
Segmentor 905 communicates with the Binder 906 via a Database 909 storing Segments 910 and 
Properties of Segments 91 1 . The Binder 906 generates at least one and usually a plurality of logical files 

30 (0. 1. 2. ...n-1) 913. The Story Compiler Server also includes a Packaging Procedure or Program 907 
that generates story files by packaging particular combinations (and/or permutations) of the logical files. 

Desirably, the logical files are cached either within the Story Compiler Server or external to it In 
associated storage so that existing logical files may be reused as components of other stories to be 
generated at a later time or Jate. Note that the three flat files are described separately for purposes of 

35 darity and convenient exposition, and are three separate files in one embodiment. Other embodiments 
combine the information into different numbers of flies, for example, into a single file of Into more than 
two or three separate files. The number of files is selected according to the particular implementation, 
and it is only important to appreciate that there are generally three types of information received and 
utilized by the Story Compiler Server and that this information is not always stored on an adual hard disk 

40 or in an in-memory file related format. 

The Binder is responsible for taking the Infomiation about specific devices, the transmission 
characteristics, other information such as Information relevant to the mail system. It also takes the 
segment infomiation. and creates the master flag values by comparing all of the properties of the adual 
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device to receive the message with the actual opcodes and parameters (media data are also stored as 
parameters) that are In the segments, and it detemiines or sefects linearly whether the segments get 
included in a specific logical file which may itself be included in a final story file. There is also 
infonnation about which logical files to end up putting segments into. By linearly, we mean that the 
5 segments are looked at once in a predetermined order and either discarded or included in one of the 
logical files. Inclusion in the logical files is by simple concatenation, or addition of the new segment at the 
end or temninus of an existing collection of segments. Where the existing collection of segments is a file, 
the new segment is concatenated to the end of the file. Each logical file therefore includes one or more 
segments. The Packager 907 combines the logical files into a single story file. 

10 One-time infonnation may, for example, include a URL pointer to an MPS file, the actual MP3 

data, discount rates, .sp.ecifi.G.message.types, .and the like. The •one-time infonpnation-may indude either 
raw or processed content. The one-time information is the information that is provided just once to 
generate all of the stories no matter what number of actual messages are generated or sent. The server 
can generate the segments all at once. The per-instance information is the information that identifies, for 

15 example, some or all of the recipients, tt will be using some or all of the media parts from the one-time 
information. There can be overlap in the information provided in the per-instance information and In the 
one-time information, and the system optionally provides means for determining which of the potentially 
conflicting pieces of information to use when there is overlap. 

Consider, for example, a StoryMail promotion message. These three types of information 
20 would generally be separate. A database would be created having a database of segments for the entire 
promotion. There would also have to be a list or multiple lists of people to send the pn^motion to. There 
would be customization infomnation such as names, nick names, etc for each instance of the message. 
Then when a device, email environment, application, and the like that wants to receive the promotion is 
identified, another device specific information file is sent to the Binder that goes tiirough all tiie segments 
25 in the database one-by-one to decide to include or not to include the segment. The binder binds tiiese 
segments to be included and linkage information sequences into a set of logical files. The Packager 
takes the set of logical files (optionally does a top level compression) and packages them together as a 
single story file. 

Thus, in one embodiment, the invention provides a method for automatically and autonomously 
30 generating a customized combined data and procedural file from non-procedural flat file descriptions. 
The method includes retrieving a plurality of flat file format content precursors from at least one storage 
location, segmenting the retrieved plurality of flat file fonmat content precursors into segments comprising 
procedural representation sequences, generating linkage information sequences for the segments, 
binding the segments and linkage infonnation sequences into a set of logical files, and packaging the set 
35 of logical files into a single story file. 

The transcoder Uiat the segmentor can call are just separate programs for different media 
types (such as an MPS transcoder). The MPS tiranscoder knows how to transcode MP3. tfie usual 
process being to decode MP3 into the actual physical decompressed representation and then to re- 
encode it info the Story compressed procedural representation in segments. This process may also 
40 include generating some characteristics, such as the width and height of the picture, the length of audio 
portion. The segmentor and binders may typically be optimized or adapted for particular types of 
messages or stories. For example, different segmentor and binders may be used for generating catalogs 
than for generating greeting cards, tiiough somewhat less desirably, the same segmentor and binders 




wo 02/10962 PCT/USOl/23713 

136 

may be used. The transcoders are not typically built Into the segmentor because they can be used as is 
without modification for many different templates; however, in alternative embodiments they may be 
integrated with the segmentor. 

In some embodiments, parts of the segmentor and binder may merely be data table driven 
5 where the data tables are different for different applications. A template is selected, and associated with 
the template is a form that is filled out by the user. The user need not know or care what happens after 
the form is filled out. Intelligence in the system selects an appropriate processing or presentation 
scheme. The form may result for example in an XML based schema thai is used in conjuncb'on with the 
segmentor program and binder program. From the user's perspective, it is the type of message or story 
10 that the user wants to create that is important, not the details of how this Is accomplished to maintain the 
message intent. 

The master mask includes bits for all the segments that are to be considered in generating the 
story. This is very efficient, because one can have a completely different input file and end up with 
exactly the same story. It is desirable not to have to generate the same (or even nearly the same story 

15 again if it can be or has been cached. Masking provides a good key for a story caching and retrieval 
methodology that permits selecting or othenn/ise identifying an existing cached story that will be 
compatible for someone else's needs. The story does not have to be the identical, because even when 
the complete story is not identical, the story can still use many of the logical files that are the constituent 
parts that make up the story. When these existing logical files can be reused (e.g. from a cache) then do 

20 not have to be regenerated. Frequently, it is only necessary to generate a certain logical file or a small 
number of logical files that*are different, such as for example those that include the name of the message 
addressee or recipient. Use of the binary mask makes it possible to perform the selection and 
"generation" very quickly. The whole mechanism is very light weight or thin and highly efficient. One can 
use mask values to efficiently know how to cache data and how to access previously cached logical files 

25 as well as complete stories. The combination of the masking scheme with caching is very powerful and 
fast. 

Story Player Having Out-of-Order Processing with Automatic Error Recoven^ 

Embodiments of the story player (in conjunction with the story composition engine or story 
30 compiler) provides out-of-order processing of the procedural codes within the story. It also provides 
automatic error recovery. Out-of-order processing results at least in part because of the procedural 
nature of the stories. Execution of any particular story procedure or op code may generally be dependent 
on the results of earlier story procedure or op-code execution, user navigational or other inputs during 
story playback (rendering), user preferences, device limitations and characteristics, and the like features 
35 described elsewhere in this specification. Some embodiments also provide for speculative execution, as 
the system, method, and procedures will attempt to anticipate particular portions of large story files will be 
needed and preferentially retrieve these from the sender. This speculative execution is particulariy 
advantageous when receiving and playing back large story files that are received in the streaming mode 
using story subfiles as described elsewhere in this specification. 

40 Enrors, such as enrors in execution, are less likely to occur than in conventional systems, 

methods, operating systems, and computer programs as the result of the preferred procedures for 
allocating memory and buffers, programming conventions that facilitate security and stability, as well as 
other features described elsewhere in this application, in the even that an unexpected condition arises 
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that might othenvise give rise to an error, error recovery is automatic at least in part due to the 
procedures for resource constrained retry (described elsewhere in the specification) and the ability of the 
procedural language itself to provide alternative courses of action, should an unexpected condition arise. 
This lessens the chances that the device or program will hang. The inventive system and method also 
5 make very few, if any, demands on the device operating system so that compatibility is less problematic 
than in some operating system-application program environments. 



Automatic Computer Generation of Storv File From Flat File Description 

In a prefeaed embodiment, the invention provides automatic computer generation of a story file 
10 procedural format file from a flat file description. For example, XMP and extensions of XML such as 
EXML, VXMP, and the like are flat files. Content such as multimedia content may be provided as MP3, 
MPEG Video. Text, and the like, and described by an XML code description. In an inventive conversion 
or generation procedure, these content parts are transcoded into (i) procedural representation story 
sequences, and (ii) linkage information sequences. In the preferred embodiment, the story sequences 
15 are sequences of 32-bit fix length words as described elsewhere In the specification. The linkage 
infonmation my for example specify the offsets of pictures in a logical file containing a stream of video . 
pictures. This transcoding will generally be performed by the composition engine or by an agent or entity 
(transcoding engine) associated with the composition engine at composition time. However, it may be 
performed at a different time and/or external to the composition engine. 

20 Inputs to this binding procedure may for example include a display screen size, user 

preferences, and the like parameters as described elsewhere in this description. The binding procedure 
then selects which sequences of segments to concatenate in each logical file of the single story file, 
(See description of story file structure elsewhere In this description.) The selected logical files are then 
packaged into one story file. Optionally, but desirably, the logical files are encrypted to prevent third 

25 parties from making use of the infonmation and digitally signed so as to assure source and authenticity. 

The linkage information may be directly accessed but is typically accessed through one or more levels 
of indirection, and the indirection may be recursive. By indirection we mean the parameters do not 
contain the value to be used but rather a reference to the value. This is beneficial because segments 
can just be concatenated and they link con-ectly to each other using fewer server (computer) resources 
30 and increasing message capacity. There Is no need to provide complex linkage or relocation operations 
on the servers as in conventional systems and methods. 

The invention therefore also provides a method for automatically and autonomously generating 
a customized combined data and procedural file from non-procedural fiat file descriptions, the method 
comprising the steps of: retrieving a plurality of flat file format content precursors from at least one 
35 storage location; segmenting the plurality of flat file fomnat content precursors into: (i) procedural 
representation sequences called SEGMENTS; (ii) linkage information sequences generated by a 
SEGMENTOR program and/or TRANSCODER program; (iii) a BINDER program; and (iv) a Packager 
program. 

This method may be further defined such that the step of binding includes receiving inputs 
40 identifying story player device characteristics. The method may altematively be defined such that the 
step of binding includes receiving inputs identifying story player device user preferences. It may be 
defined such that the step of transcoding includes receiving Inputs identifying communication channel 
bandwidth characteristics. 
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The method may provide that the step of transcoding includes receiving inputs identifying story ^ 
player device . characteristics, story player device user preferences, and communication channel 
bandwidth characteristics. 

The method may provide that the step of binding further comprises selecting particular 
5 sequences of SEGMENTS to concatenate into each logical file. This embodiment of the method may 
also provide that the step of packaging further comprises assembling a plurafity of the logical files Into a 
single story file. A single story file may comprise one, more, or all of the elements as described 
elsewhere in this description. 

The method may provide that the selected and concatenated sequences are packaged into a 
10 single story file. The logical files may be encrypted for security and/or digitally signed. 

The method may provide that the linkage information includes direct linkage information (links) and/or 
indirect linkage infonnation (links). The linkage infonnatioii in either instance may Include recursive 
indirect linkage infbrmation.Logical files may be compressed, and the packager may performs a top-level 
of compression as part of the packaging process. Numerous other embodiments having one or more of 
15 these alternatives may be provided. 

SFF File Convention 

In one embodiment, a single story file for transmission and playback is comprised of a top-level 
compressed and packaged set of possibly compressed logical files. During playback of the story, the 
20 player top-level decompresses and un-packages these logical files into the individual logical files. The 
order in which the decompression and unpackaging occurs is not important, in one embodiment 
decompression precedes unpackaging, and in another embodiment, unpackaging precedes 
decompression. Note that a logical file includes: (I) a header, (ii) a start-up procedure (optional), and (iii) 
data (optional). 

25 A logical file is specified by two number identifiers, a content identifier (Content ID) and a 

cun-ent file number. One embodiment implements a file open and play procedure as follows. The 
received story file is opened (either as it is received or after a period of storage), and all logical files are 
unpacked and decompressed from the single transmitted story file. As each logical file is opened for 
playback, a program procedure or subroutine read firom the logical file is executed. This program or 

30 subroutine can be used for storing logical information accessed by other story programs and procedures 
and subfiles. 

When packaging into a single story file there is a top-level compression applied to the 
components, some of which may be compressed (e.g. OCT compression of image files) and other of 
which inay be uncompressed (e.g. text). This is referred to as "top-IeveP compression. The single top- 

35 level compressed story file (Table 6) is unpackaged and top-level decompressed before playing back the 
. story (T able 6). Logical Files 0, 1 , 2, and 3 in Table 6 may still include compressed portions. In Table 7; 
subfiles are illustrated. There are at least two reasons why one might not send the entire story file and 
instead send multiple subfiles. First, it is desirable to be able to start playback before the entire story file 
has been transmitted (or received) and it is desired to temporally overiap the transmission time with the 

40 playback time. Suppose for example that content is being received firom one web page and the story is 
one hour long and will play continuously. It is undesirable to have to wait for the entire story to be 
transmitted and received fi-om the other web site before beginning playback. There is only a need to 
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delay or wait long enough (typically for a few seconds to provide some input buffering) of the story to be 
received to begin playback of the story. The headers are provided rn so that a program can easily break 
up a single story file Into sub-story files, which are conveniently referred to as subfiles. The subfiles are 
the same format as a single story file, except that they only contain an expression of a portion of the 
5 original full story. As soon as a subfile has been received, a partial full richness story Is available to 
begin playing which Includes all of the multiple and backup richness content as the full story as well as 
navigation features and the like of the full story. 

The headers in the logical files and their associated reference numbering system whereas the 
file is identified using a Content ID (CID) and Content file number (CFN) allows a story file to be broken 

10 up automatically. But one potential problem with this goal is that all parts of a story potentially reference 
all or many other parts of the story, for example, for navigation,. picture ofEsels„and .the .fike. Jf -the story 
file is broken up, without other steps being taken, and one were to use the physical offsets in the story 
file, the references would be wrong unless they were relocated. In general, one does not want to have to 
handle such relocation. Preferably one provides for a single global relocation which is provided by the 

15 header. The headers let one presence all of the offsets, such as offsets in jumps of subroutines, without 
changing any of tiie parameter values or offsets specified as parameter values, and being able to break 
up the original single story file into files (subfiles) tiiat do not have the same physical offsets as tiie 
original story file. 

Details of these offsets, headers, and file elements using logical file offsets are described 
20 hereinafter relative to story streaming procedures. (The use of subfiles, headers, and/or logical file offsets 
is beneficial for both streaming and non-steaming environments.) For non-streaming environments 
and/or applications, tiie use of logical file offsets rather than physical file offsets Is optional though 
desirable. 

Note tinat it is up to the system that is de-composing the story file into subfiles to make sure all 
25 of the content is present in the subfiles so that playback for the desired period of time, or functionality can 
take place without the need to receive other subfiles. This somewhat presupposes tiiat the user does not 
implicitly or explicitly invoke navigation so that other segments not immediately available in the player 
would be required. If such navigation is utilized, the required segments are merely requested and 
transmitted in accordance with the current playback needs. In a preferred embodiment the startup 
30 procedure Inside logical files is used to request commencement of transmission and top-level 
decompression of all subfiles to which direct navigation from the current sub-file Is possible. In most 
cases by tiie time the user or story procedure attempts to navigate to a procedure in another subfile the 
other subfile will already have been delivered and top-level decompressed. In cases where the new 
needed subfile is not yet available, the resource constraint and instruction retiy technology of the Story 
35 Playback Engine will cause the player to effectively stop media playback operations and poll for the new 
subfile infonnation. As soon as the new subfile infomnation becomes available, tiie story media playback 
operations will resume. 

The header also includes the physical position in the file where the offset referenced data 
starts. The data is located after the header and the starting subroutine (start-up routine). These start- 
40 up routines are just another story subroutine. What happens whenever you open a logical file the first 
time when playing back a logical file, is that if tiiere is a start-up procedure it is ain imnnediately. For 
example, you may have a subroutine that causes calls to functions in the Hardware Abstraction Layer 
that makes a request of the transmitting device for whatever subfiles it is going to need in tiie near-tenn 
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future based on information it currently has. The subfiles are all chained together in this manner. Recall 
that in preferred embodiments, stories are not just continuous streams having a beginning, a middle, and 
an end. Rather they have navigation features that permit jumps, and alteration in what might be played 
back. Depending upon the navigation steps taken (or not taken) some subfiles will never be needed and 
need not be transmitted. The system, including the story compiler, has enough intelligence to compile 
the story and subfiles in a manner that supports these operational features. The ability of the system and 
method to survive the temporary unavailability of one or more subfiles is taken care of by the story 
procedural features, including resource constrained instruction retry, described elsewhere in this 
application and related applications incorporated by reference. There is no need for an additional or 
extra mechanism to handle this situation. Eventually, there wilt be a reference to an offiset and a 
realization that the logical file is not available at the player yet At this point the instmction that needs 
the resource from a new subfile not yet present issues a retry return code. Furthermore, anything 
requiring this step to complete will also stop because there will be a resource that is not available 
because the original retry instmction containing thread is effectively stalled before it can make any other 
resources available to other threads. For example a thread will just keep trying to open the file until It is 
available. Eventually the HAL will have fetched the other subfile, because it had to have requested it in 
one of the startup subroutines, when it becomes available it will be opened and playback will commence 
or continue. Other threads that were suspended for lack of the resource will likewise resume as resource 
constraints have been removed. 

Regarding Table 7. There are now a number of subfiles that each contain a piece of the story 
file. And now instead of all the logical files having the file number of 0, only the first one has zero and 
subsequent logical files inside the subsequent subfiles have higher numbers. 

Pieces of logical files as they appear in Table 5 are effectively distributed among the subfiles (e.g. 
subfile 0, subfile 1. .... subfile ^1). They need not break at the same place as in the original story file. 
The program or user or toot that generated the subfiles has to generate the subfiles that link them all 
together In ternis of asking for transmission of them, but the logical story Infomiation" (data, procedures, 
opcodes, eta) that goes into the actual subfile only has a requirement that a logical file with a Content 
File Number (CFN) from a subfile that has a higher CFN than another subfile also has logical files that 
have offsets larger than those from, logical files included in subfiles with lower CFN. 

When an offset parameter to a JUMP_OP is not within the current logical file (the PBE can tell 
because it looks for the bounds of the logical file offsets in the header) then it has to go open and 
decompress the subfile with a higher CFN if It has not already been done (the HAL decides how to do 
this). If it jumps backward, before the first logical offset in the cuaently open logical file that it is 
executing, then It needs to open a logical file with the same content id but from a subfile with a lower 
CFN. If there is a jump from the beginning of the story to the end of the story the middle ones won't even 
exist. Note, that in a preferred embodiment, the subfiles are not sent unless the player asks for them. 
Therefore, no bandwidth is lost transmitting and receiving unneeded subfiles or content generally. It 
should also be appreciated that the method for finding the subfile with a particular logical file offset's data 
does not need to be a linear incremental search as described above for explanatory purposes. 

Typically, the subfile will have sufficient infonmation to enable unintermpted playback for the 
user. Uninterrupted playback need not however be guaranteed, as some occasional waiting on the part 
of the user is acceptable. Providing and buffering enough story content for between about 1 second and 
about 20 seconds is normally satisfactory, typically providing such story content for between about 2 
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seconds and about 5 seconds may be suffident Note that account may be taken of cunrent and^or 
historical communication link characteristics in determining the size and/or duration of subfiles to 
communicate. It is advantageous to reduce the size of the subfiles as much as possible while providing 
reasonably unintemipted playback as user navigation within the story may alter the identity of the subfiles 
5 that will be needed. User navigation or user choices within the story playback. Too much time and 
bandwidth might othenvise be consumed in downloading story content that will never be rendered. 
Therefore, it is desirable to request transmission only of infonnation for which direct links are indicated, or 
where there is a reasonable chance that the story content will be rendered. Optionally, some decisions 
may be made based on user characteristics, communication channel characteristics, and traffic in and 

10 between communicating devices. 

Desirably, subfiles for which there are direct .Jinks .from .currently executing subfiles will be 
requested from the sen/er. Direct links to story content from the then currently executing subfile are 
advantageously requested before they are needed so that branches to any such identified directly linked 
content may be made without undue delay or objectionable interruption. The subroutine will try to figure 

15 out which all the needed subfiles are. The subroutine may even try to anticipate where a branch will take 
place, somewhat like the speculative execution of microprocessors, because It does not know which way 
the user will navigate. Most stories will typically not have complex navigation, but they can. Intelligence 
is applied to breaking them up Intelligently^ and enough intelligence can be applied such that the 
computer can automatically break up into subfiles in at least an acceptable manner and in some 

20 Instances In an optimal or near optimal manner. 

For very complex navigation, fast playback, and a slow transmission speed, needed subfiles 
may sometimes not be immediately available; however, fielded systems are designed to reduce any 
delays to acceptable levels. It will request files, wait for receipt of such files (they may be considered to 
be a constrained resource), and they will eventually be received, and played if and when needed. In 

25 some instances, a first logical file will request a first set of subfiles and a later logical file will request a 
different set of subfiles, since the later logical file is presumably executing, the retrieval of the second set 
of subfiles may be performed preferentially and the first set of subfiles cancelled as no longer needed, or 
the newer request may be given a higher priority. Of course various rules and procedures may be 
envisioned to Implement particular subfile requests. 

30 Streaming is one application for which subfiles are advantageously provided, particulariy when 

the stories are large and It is desired to start playing a story before the entire story has been received by 
the story playback device. Starting playback before one has the entire story is a second application and 
justification for subfiles. The size of a subfile may generally depend on many factors. In one 
embodiment, the size of the subfile is dependent on the content, transmission channel characteristics, 

35 device characteristics. Generally a story is generated that Is correct for the Intended device and 
transmission channel characteristics. Then the story is broken up into subfiles based on predetemnined 
aiteria, such as for example, that each subfile should contain a predetermined period of playback. In 
one embodiment, the predetermined period of playback is about 5 seconds. This playback duration 
pertains at least in part to buffering so that the person never needs to wait for more information to arrive. 

40 The goal is to maintain continuous or substantially continuous playback to the extent possible, and to 
reduce the number of instances where there Is a stall or pause in the playback. In general playback in 
subfile pieces of between about 2 seconds and about 20 seconds may be used, with longer subfile 
durations being used when the application is less tolerant of interruption and/or when the communication 
link is slower or less desirable such that having more content available in the playback device (assuming 
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adequate available memory) is desirable, tt may also be efficient when communication channels are fast 
and user navigation may be complex, to reduce the size of the subfiles and request additional subfiles as 
needed, especially as this may permit requesting some subfiles speculatively according to a plurality of 
navigational choices and the resulting jumps and/or branches. Subfiles may be quite loiig (for example. 
. 5 tens of seconds, minutes, or fractions of an hour. There are no actual technical limits on size, however, 
the one disadvantage of large subfile size being that navigational branching may render significant 
portions of subfiles unnecessary. Thus there are a number of tradeoffs to be considered in selecting ^e 
selecting subfile playback duration and hence subfile size. 

StreammQ and Receipt of Streamed Story Files or Other Content 

10 The invention further provides a system, device, method, computer program, and computer 

program product for-streaming multimedia'Tich Interactive experiences over a communications Channel. 

Logical Story files contain a part of a final packaged Story File. Logical files are accessed by the 
portable playback engine code, not by name, but rather by a number pair, the contentid (CID) and the 
currentFileNumber (CRN). By convention, the contentid identifies like data types. For example, a 
15 contentid of 0 is nomially used for the main startup and control procedures, while a contentid of 2 is used 
to store pictures and video decompression procedures and associated data. Separating like data into 
separate logical files allows for better compression and quicker access to consecutive data due to the file 
caching technk|ues employed by many device file systems. 

The currentFileNumber Is normally 0, since in a story file there is only one logical file for each 
20 contentid; however. cun-entFileNumber can be used in cases where the single story file is automatically 
broken up into or directly composed as a set of sub-files. Story sub-files have the same structure as a 
complete story file, but only contain a subset of a complete story message. 

Story sub-files can be used to allow Story playback to begin before the entire Story File could have been 
transmitted over a communicafions link. Only the first sub-file Is needed to start playback, other sub-files 
25 are requested automatically in advance so that under normal conditions necessary sub-files will always 
arrive by the time their content is needed during Story playback. Hence the transmission time for 
subsequent sub-files can overlap with the playback time of the preceding sub-files. 

One of the preferred uses of the sub-files is to allow for continuous streaming of Stories over a 
network. In order to make streaming work effectively, every logical file begins with a header that contains 
30 information on what portions of the complete story procedures and data are contained in the sub-file. 

In preferred embodiments, each logical file header contains at least the following elements: (1) 
a first logical file offset (FIrstLogicalFileOffset), (2) a last logical file offset (LastLogicalFileOffset), (3) a 
physical position of first logical file offset (PhysicatPositionOfFirstLogicalFiieOffset), and (4) a file starting 
subroutine size (FileStartingSubroutlneSize). Offsets are used to identify the entry points for branches of 

35 control between procedural code sequences. If the offsets were the physical byte offsets within the 
logical files then branching to the 0 offset from within a story would start execution with the very first 32- 
bit word of the logical file. And a subroutine call instruction with an offset of 40 would start execution of a 
subroutine using input data from offset 40 in the physical file. But this is not the case in the inventive 
method or Implementation. The physical files begin with a header followed by a file starting subroutine, 

40 so there Is a header instead of executable instructions stored at offset 0. 

When a story file is to be automatically broken up and streamed as a sequence of sub-files, the 
header information at the start of each logical file are used to maintain the offsets values within the 
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original story. In this manner the offsets for branching and subroutine catis within the story do not need 

to be relocated, so long as the process of breaking up the story files Into sub-files generates the values of 
the headers of the sub-file logical files to maintain the absolute offset values from the logical file with the 
same contentid from the original story file. If a jump to an offset occurs to an offset that is not in the 

5 range FirstLogicalFileOffset to LastLogicalFileOffset of the cun-ent logical file, then the story playback 
engine code can find the conBct file by inaementing or decrementing the currentFileNumber and 
opening the new logical file. This process is repeated until a sub-file logical file with the same contentid 
is found that contains the target offset. Larger currentFileNumber values indicate that the logical offsets 
within the logical file are all greater than logical files with the same contentid with lower 

10 cunrentFReNumber values. 

Before any procedure .in .a .logical file that is opened begins execution, the 
FileStartingSubroutine that follows the header, if present, will be executed. When story files are broken 
up Into sub-files for streaming the generated sub-file logical file FileStartingSubroutine can be used to 
request that specific other sub-files be transmitted so that they will become available by the time 

1 5 execution is passed to them during story playback. 

Logical File headers and FileStartingSubroutines can be used to allow automatic generation of 
sub-files used for starting execution of the story before the entire story message is received, or to allow 
for continuous streaming of large or continuously generated stories. The job of breaking up a singe story 
file into sub-files is much less complex because of the logical file header infomiation which provides an 

20 effective file scope relocation value which presen/es the original offsets which are normally scattered 
throughout the story procedures and logical files. The FileStartingSubroutine provides a convenient and 
efficient mechanism for automatically adding any story procedural instructions necessary to control the 
transmission and coordination of the sub-files to accomplish the mission of the original story file without 
the need for the entire story file to be present on the client that is playing the story. So one use of the 

25 sub-file system is to allow for the continuous playback of large story files that would othenivise not fit into 
a specific playback devices. Another use is to allow the streaming of real-time stories that are being 
generated on the fly. An example of which would be the real-time transmission of a baseball game that is 
to be viewed effectively simultaneously with those directly viewing the event at the actual stadium. 

These structures and procedures provide means for preserving message Intent and quality in a 
30 streaming story implementation. 

Table 5. SINGLE COMPRESSED STORY FILE 

Top-Level Compressed Logical File 0 

Top-Level Compressed Logical File 1 

Top-Level Compressed Logical File 2 

Top-Level Compressed Logical File 3 
Tables. UNPACKED AND TOP-LEVEL 

Unpacked and Top-Level Decompressed Logical File 0 
Unpacked and Top-Level Decompressed Logical File 1 
Unpacked and Top-Level Decompressed Logical File 2 
Unpacked and Top-Level Decompressed Logical File 3 
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It will therefore be appreciated in light of the description provided above, that the Invention 
provides a method for streaming electronic content from a sender to a receiver over a communication 

5 link, the method comprising the steps of: forming a single virtual story file of substantially the complete 
electronic content of the story, or at least for a predetermined playback period or playback functionality; 
communicating the single virtual file over the communication link in a data stream at a data rate 
commensurate with available bandwidth and characteristics of the communication link, the file being 
received by the receiver as sequential portions of the single virtual file In the form of individual subfiles: 

10 and, the opening of a later received subfile being controlled by a previously received subfile such that 
each the currently executable portion of each of the subfiles is executed only upon the direction of an 
earlier executing subfile. 

The virtual story file comprises a set of logical files, each logical file including a header 
indicating that the first logical file procedural/data content offset is zero (0) and that the last 

15 procedural/data element offeet is the size of the logical file procedural/data content less one atomic unit. 
The single x/irtual story file includes a plurality or set of sequentially arrayed subfiles, each subfile 
including (i) a header portion identifying a first subfile procedural/data content offset from a reference 
location in the single virtual file. The virtual story file also includes (ii) a currently executable portion with 
each the subfiles that executes when the subfile is opened after receipt; and (iii) a control portion that 

20 controls loading and execution of other subfiles. 

Therefore, in one embodiment of the inventive method for streaming electronic content from a 
sender to a receiver over a communication link, the method includes the steps of: forming a single virtual 
story file comprising substantially the complete electronic content of comprising: a set of logical files, 
each logical file including a header indicating that the first logical file procedural/data content offset is 0 

25 and that the last procedural/data element oftseX is the size of the logical file procedural/data content less 
one atomic element; automatically and intelligently reforming the single virtual story file into a plurality of 
sequentially anayed subfiles, each subfile including: (i) a header identifying a first subfile offset from a 
reference location in the single virtual file and containing a substantially complete story for a 
predetenmined playback period or playback functionality; (ii) a currently executable portion with each the 

30 subfile that executes when the subfile is opened after receipt; and (iii) a control portion that controls 
loading and execution of other subfiles; communicating the single virtual file over the communication link 
in a data stream at a data rate commensurate with available bandwidth and characteristics of the 
communication link, the physical file being received by the receiver as sequential portions of the single 
virtual file in the form of individual subfiles; and the opening of a later received subfile being controlled by 
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a previously, received subfile such that each the currently executable portion of each of the subfiles is 
executed only upon the direction of an earlier executing subfiie. 

This method may be further defined such that a leading and previously received subfile holds 
and controls execution of a trailing and subsequently received subfile. The above method may as well be 
further defined such that each subfile Includes a control portion that instructs the playback engine to 
search for and open and execute procedures and/or data from a preceding or trailing subfile or set of 
preceding and/or trailing subfiles. 

The method for streaming may In some embodiments, provide that one or a number of subfiles 
is requested to be transmitted by a starting subroutine as each logical file is opened for use by the story 
being played. In other or the same embodiment, the method may provide that each subfile received is 
executed tintil all subfiles for the single-virtual file -have teen received and executed. It may as well 
provide that there can be branching fonward and backward to any number of points between sub-files 
because of navigation. 

If a trailing subfile directed to be sent and received during the execution of the control or main 
procedural parts of a previous subfile is not yet completely received at the time control is transfen-ed to 
the trailing subfile, the procedure transferring control will recognize this as a resource constraint and 
automatically retry the story instruction or Instructions that require the presence of the complete trailing 
subfile. Embodiments of the method of streaming electronic content may also provide that if a trailing 
subfile identified by the control portion of a leading subfile logical file has not been received, the control 
portion retrying opening the trailing subfile until it is received so that the quality of the stream is not 
degraded. These opfional steps may be combined in many ways. For example, the method may include 
one or more of providing for: a leading and previously received subfile holds and controls execution of a 
trailing and subsequently received subfile; each subfile includes a control potion that instructs the 
playback engine to search for and open and execute procedures and data from a preceding or trailing 
subfile or set of preceding or trailing subfiles; one or a number of subfiles is requested to be transmitted 
by a starting subroutine as each logical file is opened for use by the story being played; each subfile 
received is executed until all subfiles for the single virtual file have been received and executed; there 
can be branching ifonward and backward to any number of points between sub-files because of 
navigation; if a trailing subfile identified by the control portion of a leading subfile logical file has not been 
received, the control portion retrying opening the trailing subfile until it Is received so that the quality of 
the stream Is not degraded; if a trailing subfile directed to be sent and received during the execution of 
. the control or main procedural parts of a previous subfile is not yet completely received at the time control 
is transfen^ed to the trailing subfile, the procedure transferring control will recognize this as a resource 
constraint and automatically retry the story instmction or instoictions that require the presence of the 
complete trailing subfile; the electrons content comprises an electronic content selected from the group 
consisting of real-time transmission of video and audio of events and non-real time audio and video of 
events, real-time and non-feal-time transmission of navigation, and combinations of these. 

When a high-bandwidth connection connects the sender and the receiver but memory in the 
receiving device is not of sufficient size to simultaneously store the entire story, the story being received 
as a plurality of subfiles as they are requested, sufficient memory being resented for execution of subfiles 
already received, the story never residing in the memory of the device in its entirety at the same time. 
Any of these embodiments may provide for either a reaMime streaming method or a non-real-time 
streaming method. 
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Different types of electronic content may be communicated. For example, in some 
embodiments, by way of example but not limitation, tlie electronic content comprises an electronic 
coupon for a product, an electronic advertisement for an item or sen/ice, an electronic commerce content, 
an electronic greeting card, an electronic catalog, and combinations or variations of these. In fact, the 
5 inventive method may be used with virtually any type of Information or data that can be communicated In 
electronic form. 

In one particular embodiment, the electronic content comprises an electronic content selected 
from the group consisting of real-time transmission of video and audio of events and non-real time audio 
and video of events, real-time and non-real-time transmission of navigation, and combinations thereof. 

10 The method is applicable to small and large content items, and in one embodiment, the 

•electronic story content-is larger than device can store at onetime. For example, in one embodiment of 
the inventive streaming method, a high-bandwidth connection connects the sender and the receiver but 
memory in the receiving device is not of sufficient size to simultaneously store the entire story, the story 
being received as a plurality of subfiles as they are requested, sufficient memory being reserved for 

15 execution of subfiles already received, the story never residing in the memory of the device in its entirety 
at the same time. 

The invention provides a system and method that allows for fonfi/ard, backward, and random 
access of various ones of the story subfiles as navigation occurs. 

The method of streaming also may provide that the story subfiles are executed non- 
20 sequentially, and permitting non-sequential execution of subfiles in response to navigational decision 
inputs to the device. 



Use of Fixed Size Instruction Opcodes and Parameters With Appropriate Compression 

In story procedures fixed size instructions and parameters with nominally small values are used 
25 in conjunction with appropriate compression to enable small portable and fast execution, and to enable 
physically small Play Back Engine,PBE. code, physically small procedural representations of messages 
and a large dynamic range of values. Although the size of opcodes and parameters is fixed a relatively 
large size to the values most used, the compression of the story procedures mitigates for the size of all 
the otherwise unoptimal or sub-optimal use of bits. In addition property choosing the size of the fixed size 
30 opcodes and parameters can aid in quick execution of the PBE because of memory access alignment 
restrictions of most commonly used processors. In conjunction with appropriate compression and small 
values of opcodes and parameters so that there is little penalty for using large fixed sizes (e.g. 32 bits) to 
provide a dynamic range of values suitable to represent a very large range of opcodes, media sizes and 
parameters. 

35 An additional benefit for using fixed size op-codes and parameters is that it permits use of the 

same indirection mechanism, method and procedures. The same native processor computer software 
code can also be used to implement the PBE code that accesses the opcodes and parameters for the 
op-codes so that the amount of native code Is kept small, the same code being used for both. 

In one embodiment of the invention, stories are structured as sequences of a fixed number of 
40 bit representations, desirably sequences of a fixed size word. For example, the stories may be structured 
as a plurality or sequence of 8-bit. 10-bit, 12-bit, 16-bit, 24-bit. 32-bit. 36-bit. 48-bit, 64-bit. 96-bit. 128-bit 




wo 02/10962 



PCT/USOl/23713 



147 



10 



15 



20 



25 



30 



35 



or any other sized bit words. In one prefen-ed embodiment, stories are provided as a sequence of 32-bit 
words. 

In one embodiment, all op-codes, parameters and offsets are a fixed size. Use of a fixed size., 
especially of a suitably chosen size is beneficial for a number of reasons. For example, portability and 
adaptability are aided by the use of fixed size words. A 32-bit fixed size word is advantageously used for 
representing a large dynamic range of value, and is highly comjpressible because both instructions and 
parameters are designed to have mostly small integer values. The fixed size makes things very scalable 
and processor words are always aligned along a fixed size (e.g. 32-bit) word boundary. Alignment of 
values on 32-bit boundaries Is sometimes required and often provides for quicker access on many 
existing and most likely on yet be developed processors. 

Because -of this suitably chosen -fixed-size, the playback code, or the story is also small and 
reusable. Parameters and opcodes can be processed by the same access code and operations. By 
access codes it is meant the native processor code used to implement access to the input buffer words 
while applying possible indirection. Small size, also results because operations can be perfomed 
without the need for size conversion in the player implementation native processing code. An additional 
advantage is that the op-codes and data are aligned in an appropriately sized and organized data 
stmcture and/or memory for fast access. The native processing code Is the code running on the real 
machine Implementing the playback engine. The code that the playback engine Is implemented in is 
referred to as the native processor code (or playback engine code), and may for example be in the **C" 
language, and produces native processor code when compiled. The story procedural code is different 
from the native processing code. For example, the same common native processor subroutines or 
procedures may be used to collect opcodes and parameters ft-om one or more input buffers while 
applying indirection In the same manner for both opcodes and parameters. 

When compression is used, such as for example LZW compression, there is little penalty for 
using a fixed word size that has more bits available in the word than are nomially necessary to represent 
the op-code, parameter, or other value stored in or represented by the word. In fact, fixed sized words 
aid in the compression process where the unit of redundancy, for example, the word size matters. 
Normally there Is a redundancy unit for compression schemes which is larger than a single bit. For text 
this is typically a byte or character rather than a bit. For stories with a fixed size word of 32bits, 32 bit 
words are expected to be the redundant unit size to be used to best compress the story procedures. 

Even when a compression scheme such as LZW Compression is applied to an information set 
(data, instmctions, procedures, opcodes, parameters, control, or the like) there is normally a bit sized unit 
of storage that might repeat so that there is generally no reason for the encoding to be bit encoding. 
Often for text, the unit of repeat will be a byte or a character because these are the things that will fomn 
chains to repeat rather than the bits within the bytes or characters. 

For stories, there are advantages to specifying a fixed size. The fact that they are fixed size 
means that you can use that fixed size as the compression repeat unit. It tends to compress even better 
in this case because the semantics that are being communicated are communicated In a fixed size so 
that there is a natural redundancy size that will tend to Increase the compression effectiveness beyond 
the feet that zeros or other repeated bits or other entities (normally removed during many compression 
schemes) go away. 

For compression, it is desirable that the size of the elements of the repeating unit are not 
smaller than the logical values that repeat. For example, if one is compressing text one should use 
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bytes (8-bits) rather than nibbles (4-bits) because nibbles would not tend to repeat within the characters 
of the text. Here, the semantic thing that is repeating is the character combinations and words, not bit 
combinations that make up the characters that you are expecting to repeat. 

The fact that the invention puts its logic into a structure that repeats into a series of fixed size 
5 words, instead of having variable length pieces of the same Information all over, which would tend not to 
repeat very often and to defeat the kinds of repeats that provide good and efficient compression. 
Therefore, even though the uncompressed instantiation of the procedural data might be smaller, the 
compressed version might actually be larger than if they were put into fixed size words, because more 
things would repeat and any infomiation that repeats is nearly free or at least effectively free. 

iO The Playback Engine (PBE) run-time module or system also benefits from the sequences of 

fixed-sfee words. For example, a story may be-structured as a sequence of concatenated iriterspersed 

instmclions and parameters of the general fomi "Instmctioni, parami, param2 lnstmction2, parami, 

param2, param3, Instruction n. parami, .... param k*. Each of these instructions (e.g. Instruction 2) 
and parameters for the preceding instruction (e.g. parami, param2, param3) are 32-bit (or other fixed 

15 length words). The story playback engine or player fetches each word and either utilizes the value in the 
word as a parameter for a function or other operation, or uses the value in the .word to Identify and 
execute a function based on the value found in the word. Various program" instruction types may be 
used. 

Once the function associated with the value in the word has been identified, the function then 
20 fetches the parameters that follow the instruction. It then performs the instruction (while fetching 
additional parameters, if any); advances the program counter past the parameters to the next instruction; 
and retums a status code that, for example, indicates the completion, error, or other status of the 
instruction. Extraction of the parameters for a particular instruction, and movement of the program 
counter to a next instruction are facilitated by the fixed-size characteristic of the stories. 

25 Although stories are desirably structured as sequences or a plurality of fixed-size words, this is an 
optional feature, and stories having other organizations may be utilized. For example, the stories may be 
organized as sequences of variable length portions, or stories may be organized using a nominal fixed 
size and even and/or odd multiples of that size, such as for example a nominal 16-bit size with 32-bit 
(2X), 48-blt (3X). and 64-bit (4X) multiples of this nominal size. This provides for at least some memory 

30 alignment and efficiency. 

The use of a fixed size, such as 32-bit, that is large enough to handle codes for the Instructions 
implemented and the parameters used by the Instmctions is chosen because such size may generally 
provide for good alignment with most processors (CPUs) to woric efficiently; less native player code size 
because conversion and masking instructions that may sometimes be required for type conversion in 

35 expressions, are not needed; and less native player code size is needed because the same native 
player processor code can fetch instruction opcodes and parameters (because they are the same size^ 
and do operations on them. The relatively large fixed size also allows values with larger dynamic range 
to be represented within one word. For example, a 32-bit word can represent a value of 2^ (about 4.29 x 
10^ so that data values, image coordinates and the like can be represented. In the case of imagery 

40 data, such as X-ray image data (as well as other data), image coordinate values may be as large as 4 
Gigapixels wide and high (4 Gpixels x 4 Gpixels) when 32-bit words are used. Use of smaller word size 
would limit this range of values and/or require a different scheme for representation. 
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In spite of the use of relatively large fixed word size, there is little waste because story streams 
of op-codes and parameters are compressed when In a sfngfe file package as described elsewhere in the 
specification. Also, the instruction set is designed in a way that most opcodes and parameters are small 
positive numbers making them very efficiently compressed by algorithms that look for redundancy, such 
5 as redundancy In the form of leading zero bits. LZW like compression schemes can for example 
efficiently compress such words. 



Procedural Representation of Motion Data 

Procedural representations of motion video data are provided by the inventive system and 
10 method and are better than conventional non-procedural or flat file descriptions. Some reasons why they 
are better are set forth immediately below. 

It is known that MPEG uses Discreet Cosine Transform (DCT) and other motion video compression 
schemes for spatial compression within single video frames and motion vectors for temporal 
compression. MPEG, however, is a flat data description and spedfies motion vectors for each 16 x 16 

1 5 macro-block of pixels. 

In one embodiment, stories also use DCTs for spatial compression within single video frames 
and motion vectors for temporal compression, but stories do not rely on a flat file description. Instead, 
preferred embodiments of stories generate video frames by executing one or more sequences of 
instructions. This methodology allows for the mixing of different video decompression or reconstruction 

20 • procedures or techniques within a video stream and even within a single video frame. That is, within a 
video stream or even within a single video frame, different techniques may be applied to different picture 
portions within that stream. This can be done because it is procedural. For example, within a common 
video stream, cartoon frames typically having a limited range of colors and textures as well as more 
sharply defined edges or transitions between cartoon elements may be compressed using different 

25 techniques than continuous tone image frames having potentially more colors, greater texture within a 
graphic element, and different edge and transition characteristics. The different characteristics of 
cartoon and/or computer generated graphics and conventional imagery are known and not described 
here. 

Conventional compression schemes known to the inventors do not compress different frames 
30 within a video stream differently. For example, MPEG cannot handle different frames differently. The 
inventive method, being procedurally based, can readily provide for different compression techniques 
within single video (or other data) frames (or sets) or between frames in a multi-frame video (or other 
data) stream. Even sections of a single frame may be processed differently. For example, motion 
compensation for a whole frame can be applied using a single story instruction. In conventional 
35 techniques, such as standard MPEG (versions 1 and 2), this is not possible because a single motion 
vector can only apply to a 16 x 16 pixel block. Even extending to larger or different block sizes would not 
cure this deficiency. Also non-procedural algorithms such as MPEG normally must have fixed frame 
rates. The Inventive system and method have no such timttations. Furthermore, because, the Invention 
Is procedurally based, in the case where there are no changes between frames, such as the title frames 
40 for a movie, it is not even necessary to actually generate a plurality of identical frames at the video frame 
rate as in conventional techniques, rather, the first frame is generated and then waits until the r^ext 
changed frame is required. No extra data need be generated. 
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This provides significant advantages for procedural motion vector compression and/or 
decompression, including: (i) more compact compression because unused parameters such as real or 
Implied motion vectors do not have to be communicated, (ii) more effective compression because a 
plurality of advantageous compression/decompression techniques can be intermixed, for example, LZSS 
5 for cartoon or graphic sequences and DOT for continuous tone image frames or sequences, (iii) easy 
extensibility, and, (iv) smaller player code. 

Among the numerous features and advantages of the Invention there include a novel 
procedural implementation, and the use of procedural representation for motion data. Motion vector is 
just an example of a situation where one does not need to send information for every block and figure 

10 how to apply It. Any need for code to implement it is eliminated so that the player code can be much 
smaller if Implemented in .software. The.inventioji.also.provides.more flexibility for frame jrate andliow to 
compress frames and streams of frames. It is possible to intemiix different techniques within a frame or 
a stream of frames, and frame rates can be altered and intermixed. Motion vectors can be specified for 
entire frame rather than just 16 x 16 block as in conventional schemes. These features have an 

15 additional advantage that one does not need to send parameters that are not needed. Mofion vectors 
can be specified for an entire scene not just for a 16x16 block of pixels, so among other advantages, it is 
more efficient 



Intent Preserving Content Scaling For Device Limitations Or User Preferences 

20 The invention further provides a system, device, method, computer program, and computer 

program product for intelligently scaling message procedural/data sets to adapt the procedurat/data sets 
to receiver attributes and maintain message Intent. The Invention also provides a system, device, 
method, computer program, and computer program product for an intent presenting message adaptation 
and conversion system and method for communicating with sensory and/or physically challenged 

25 persons. 

The inventive system and method provide multi-level scaling of content. Content may refer to 
the "data" component alone, but more usually refers to the "procedural" and "data" elements of the story. 
Scaling can be performed In any one or more of three ways: (1) When generating the message, (2) When 
executing the procedural elements of the message, and (3) While the message elements are being 
30 rendered by the hardware specific functions (e.g. the HAL functions) that connect the portable playback 
engine to the actual device specific hardware. 

For example, in one preferred embodiment, sending story server (see FIG. 1) scales the story 
content when generating the message to confomi to the story enabled clients* 336 hardware capaWlilies, 
network connection characteristics, and specified user preferences at the time that such Information are 
35 detennined (see FIG. 7, step 228). In yet another preferred embodiment, story player 194 (see FIG. 5) 
scales the content of the story when the procedural elements of the story are executed, or played. For 
example, a digital image may be scaled from 300 dpi to 200 dpi while the digital image Is being 
displayed. In yet another embodiment, story player's 194 HAL may scale the story to fit into a particular 
display screen size and/or add scroll bars to the display so that an entire story can be viewed. 

40 One embodiment of the invention scales a procedural/data set by: (1) performing a first 

attribute scaling of a message when preparing and before transmission of the message to a client device 
based on receiver client attributes and a priori sender knowledge of receiving client device and user 
preferences; (2) performing a second procedural scaling of the message including executing capability 
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determining procedures embedded within the message after message preparation, message 
transmission, and message receipt, that determine receiver client capability attributes and select a 
particular message expression from a plurality of message expressions and element selection available 
In the received message; and (3) performing a third hardware abstraction layer scaling of the particular 

5 selected message expression to adapt the selected message expression for presentation on the client 
device. It can be appreciated that aspects of hardware abstraction layer scaling include the adaptation 
of the message expression to match the client device hardware characteristics. 

The receiver client attributes can be selected from a group consisting of: a message language 
preference, a message security preference, a message size constraint, connection speed, audio 

10 rendering capabilities, video rendering capabilities, device memory size, device memory availability, 
device CPU limitations, .user . nationality. .playi)ack engine .version ^r .capabilities; and combinations 
thereof. The receiver client attributes can also be selected from a group consisting of: a speed attribute 
of a processor within the dient device, an available memory attribute of a memory device connected to 
the processor, an audio capability attribute, a video capability attribute, and combinations thereof. The 

15 receiver client attributes may also include a communication link connection speed determined 
substantially during preparation of the message either (i) prior to transmission of the message, or (ii) after 
initiation of transmission but prior to completion of transmission of the message. 

It can be appreciated that the video capability attribute includes attributes for screen size, 
monochrome or color display capability, number of monochrome gray scale levels, number of 

20 presentable colors, color palate, and combinations thereof. 

The procedural scaling of the message (procedural and/or data components) Includes a 
number of detemninations such as: when an audio message expression Is Included within the plurality of 
message expressions, determining whether the client has specific audio presentation capabilities, and 
when the client does not have a suitable audio presentation capability, selecting a text message 

25 expression in place of the audio message expression. In yet another aspect, the procedural 
detemiinations Include, when first message expression is Included within the plurality of message 
expressions, determining whether the client has a first message type presentation capability, and when 
the dient does not have the first message type presentation capability, selecting an alternate message 
type expression in place of the first message type expression while still maintaining the intent of the 

30 message. 

This method may be further defined such that the altemate message type Is selected from a 
plurality of alternate message types for the first message type according to predetermined rules and on 
the client message type presentation capabilities. Embodiments may also provide that the 
predetermined selection rules indude selecting a text type alternative message when a dient does not 
35 have any of an audio message type presentation capability, a video message type presentation 
capability, an audio-video message type presentation capability, a graphic message type presentation 
capability, or a photographic message type presentation capability. 

It can be appredated that in embodiments the predetenmined selection rules may include a 
hierarchical selection preference that selects the message presentation type that provides a maximum 
40 available amount of information possible for the dient device. Furthemiore. the message presentation 
type may be selected using semantic information about the elements. 

In one particular embodiment, the hierarchical selection preference selects a message 
presentation type in the order of doCTeasing preference from highest preference to lowest preference as 
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follows: (i) multi-media Including audio and motion video content; (v) multi-media having audio and still 
graphic imagery content; (iii) motion video without audio; (iv) still graphic without audio; (v) audio; and, 
(vO text. The hierarchical selection preference can select the message presentation type to be a text or 
symbolic message presentation type when the client device does not support other message 

5 presentation types. 

The hierarchical rules can be altered by a user preferences, such as a preference that identifies a user 
of the client device as sight impaired, and/or providing an audio message fomDat type In preference to 
video, graphic, or text message presentation types. 

With respect to performing a third hardware abstraction layer (HAL) scaling of the particular 

10 selected message expression as discussed above, such HAL scaling includes adapting a two- 
dimensional graphical-display device having display device charaderistics to display a graphical data set 
that does not exactly match the display device characteristics. For example, if the graphical data set is a 
three color graphical data set and the graphical display device is a monochrome display device, the 
scaling includes transforming the three color graphical data set to match the number of gray scale levels 

15 of the monochrome graphical display device. 

In yet another example, if the graphical data set has dimensions larger than can be 
simultaneously displayed by the graphical display device, the HAL scaling adaptation includes reducing 
the graphical data set so that all elements of the graphical data set can be simultaneously displayed. In 
such an embodiment, a horizontal and/or vertical scroll bar may be displayed so that a user of the client 

20 device may sequentially scroll through different regions of the graphical data set. 

In yet another aspect, if the graphical data set has dimensions smaller than will fill an available 
display dimension, the HAL scaling adaptation includes magnifying the graphical data set so that 
available elements of the graphical data set fill at least one dimension of a two-dimensional display. 

In a particular embodiment, audio is adapted to a number of different playback environments. 

25 For example, audio can be sped-up during up playback while reducing frequency to maintain normal 
sound and audio playback can be scaled from mono to stereo and vice versa. Audio can be scaled to 
move sound around to create 3D effects, generate particular acoustic effects, to simulate different 
environments, eliminate silence, filter background noise, filter particular frequencies, enhance particular 
frequencies, adapt to particular persons hearing range, blend sounds, nomialize output level (for hearing. 

30 impaired person using HAL layer), filter to enhance high-frequency components for older persons, special 
versions of voice, and karaoke filtering to suppress voice but retain music. 

With respect to third hardware abstraction layer scaling of the particular selected message 
expression, an audio playback device having audio playback device characteristics can be adapted to 
playback an audio data set That does not exactly match the audio playback device characteristics. For 
35 example, where the audio data set has a larger frequency range than can be reproduced by the audio 
playback device, the frequency content of the audio data set is reduced so that the audio data set can be 
reproduced by the audio playback device. In yet another example, audio playback device characteristics 
can be adapted by performing a sample rate conversion so that a device that does not supports alt 
sample rates uses software and/or hardware to convert sample rate to a supported rate. 

40 In yet another embodiment, the invention scales a data set by performing a number of steps 

including performing a first attribute scaling of a message when preparing and before transmission of the 
message to a client device based on receiver client attributes. Next, performing a second procedural 
scaling of the message including executing capability determining procedures embedded within the 
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. message after message preparation, message transmission, and message receipt, that determine 
receiver client capability attributes and select a particular message expression from a plurality of 
message expressions available in the received message. Then, performing a third hardware abstraction 
layer scaling of the particular selected message expression to adapt the selected message expression 
5 for presentation on the client device. 

The receiver client attributes are selected from the group consisting of: a message language 
preference; playback engine software version number, software playback engine capabilities; a message 
security preference; a message size constraint; a speed attribute of a processor within the client device; 
an available memory attribute of a memory device connected to the processor; an audio capability 

10 attribute; a video capability attribute including video attributes for screen size, monochrome or color 
display capability, a number of monochrome gray scale .levels .or a jiumber-of-presentable colors and 
color palate; a communication link connection speed determined substantially during preparation of the 
message either (i) just before preparation while the communication link is still open; (ii) prior to 
transmission of the message, or (iii) after initiation of transmission but prior to completion of transmission 

15 of the message; and combinations thereof. 

The procedural determinations include, when first message expression is included within the 
plurality of message expressions, determining whether the client has a first message type presentation 
capability. When the client does not have the first message type presentation capability, an alternate 
message type expression is selected in place of the first message type expression while still maintaining 
20 the intent of the message. The alternate message type is selected from a plurality of altemate message 
types for the first message type according to predetenmined rules and on the client message type 
presentation capabilities. 

The predetermined selection' rules include a hierarchical selection preference that selects the 
message presentation type that provides a maximum available amount of information possible for the 
25 client device. The hierarchical selection preference selects a message presentation type in the order of 
decreasing preference from highest preference to lowest preference as follows: (i) multi-media including 
audio and motion video content; (ii) multi-media having audio and still graphic imagery content; (iii) 
motion video without audio; (iv) still graphic without audio; (v) audio; and, (vi) text. 



sight impaired, and providing an audio message format type in preference to video, graphic, or text 
message presentation types. The audio for the hearing impaired person audio can be converted into text 
and rendered so that the text flashes on the screen all at once, so that the text appears sequentially on 
the screen or scrolls on the screen, or so that the text Is animated in some way (e.g. moves around the 
35 screen in some way, e.g. to avoid covering other text or information on the screen). 

Another aspect of the Invention covers performing client attribute scaling of a message when 
preparing the message before communicating the message to a clierit device based on receiver client 
attributes. This aspect also covers performing a procedural scaling of the message within the client 
device including executing capability determining procedures embedded within the message after 
40 message preparation, message communication, and message receipt by the client, that determine 
receiver client capability attributes and selecting a particular message expression from a plurality of 
message expressions available in the received message. 



30 



In one eml)odiment. the hierarchical selection mies can be overridden by a user preference. 
Such user preferences include, for example, a user preference identifying a user of the client device as 
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In another embodiment, the invention is a method for optimizing content sent to a client device 
for a user that minimizes transmission bandwidth while maintaining the intent of the content. The method 
includes: (\) scaling the content (story) by the producer (composer engine) producing the content so that 
the data and procedural aspects of the content are scaled to match anticipated attributes of the target 
5 client device and user preferences at the time of composing the content; C'i) scaling the content by the 
story during execution of procedural content (instructions) to match the capability of the client device after 
the content is received by the client device; and (iii) scaling the content by the hardware abstraction layer 
to match client device specific characteristics to enable playback of the content on the client device. 

In this embodiment, the hardware extraction layer scaling includes the steps of: (i) comparing 
10 the hardware resources required to perform an action requested by the story procedure executing in the 
client with the hardware resources avallabte.in the client devJce;.and .(iQ .performing a-substitute action for 
the requested action rf the available hardware does not permit perfonning the requested action. 

The substitute action is selected from the group of actions consisting of: (a) substituting an 
alternative content of a different content type for the requested content; (b) modifying the manner in 
. 15 which the requested content is presented to the user; and 

(c) modifying the requested content so that it can be presented to the user in Its modified form. 

The invention provides the following substitute actions if the content is a digital Image and the digital 
image is too large to be displayed as a single image on the client device: (i) substituting a text description 
of the Image for the image; (ii) displaying a portion of the Image and providing the functionality of scroll 
20 bars so that the user may interactively scroll to different portions of the image viewing only a portion of 
the image at a time; (ill) decimating pixels of the image to reduce the size of the image to fit within the 
display area of the device display; (iv) processing the image to reduce the size of the image to fit within 
the display area of the display device; (v) substituting a smaller image; and, (vi) combinations of (1) 
through (v). 

25 If the content Is an audio content and the client device does not provide audio content playback 

capabilities, the substitute action comprises substituting a text description of the audio content. If the 
content is an image or video content and the client device does not provide imagery or video content 
playback capabilities, the substitute action comprises substituting a text description of the imagery or 
video content Furthennore, If the content is a text content and attributes of the client or the user 

30 indicate that the user is a blind individual and the client device provides audio output and text-to-speech 
conversion, the substitute action comprises performing a text-to-speech conversion of the text description 
to generate an audio content. 

Content Adaptation and ScaHna - Message Content Element Semantics 

35 The invention further provides a system, device, method, computer program, and computer 

program product for searching and selecting data and control elements in message procedural/data sets 
for automatic and complete portrayal of message to maintain message intent; as well as for adapting 
content for sensory and physically challenged persons using embedded semantic elements in a 
procedurally based message file. 

40 In addition to providing story information or content (multiple-richness levels and alternative 

and backup content types as already described) that may be sensed by individuals who are sensory 
and/or motor challenged or have particular sensory or motor disabilities, the inventive system and 
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method provide structures and procedures for identifying substantially all information that can be 
portrayed automatically and that will portray substantially all of the Information that needs to be 
communicated. This Is provided in the inventive system and method by using the semantic flags within 
the story, by providing procedures that can search for or otherwise identify the semantic flags or sets of 
5 semantic flags and associate them with particular navigation type, content type, otiier data or procedural 
characteristic, and the like, and the manner of searching through these semantic flags and using the 
information items or the characteristics of the information items thereby Identified. 

In one embodiment, the invention provides a method for communicating an Idea to a user that 
includes a sensory or physically challenged user. The method Includes a number of the following steps: 

10 (i) identifying an idea to be communicated to a user; (ii) collecting and storing a plurality of alternative 
expressions for the idea, each the alternative expnession. being .associated , with .a different one of a 
plurality of possible outputs generated by a client device, each the output intended to stimulate a different 
sense of a user; (iii) composing an electronic content encompassing the idea from selected ones of the 
plurality of alternative expressions; (iv) communicating the electronic content to the client device for 

15 presentation to the usen (v) selecting a particular output to generate from among the plurality of possible 
outputs; and (vi) executing instructions in tiie client device to generate the selected output so as to 
stimulate a particular one of the user senses. 

According to one aspect of the invention, a semantic flag mechanism provides multi- 
information for identifying and enumerating content items according to their meanings and relationships 
20 to other Items to be communicated as part of the message intent-sensor capability. 

In yet anotiier aspect of the method to adapt and scale story elements, the method further 
includes steps for soliciting user input in one or more of a plurality of manners selected from the set 
consisting of: enumerating the available user input sources and selected from one of the enumerated 
input sources, entering choices in words where the manner of input is a combinations of words, 
25 characters, letters, numbers, sentences, paragraphs, sets of paragraphs, articulated text, so as to 
provide an input for filling out forms. 

It can be appreciated that the user senses can be selected from the group of senses consisting 
of sight, hearing, touch, smelt, taste and combinations Uiereof. Moreover, the client device possible 
outputs can include: a display device for presenting symbols, text, graphics, and pictures and/or motion 
30 video sensible by a user's eyes; an audio output device for presenting a sound sensible by a users ears; 
a tactile output device sensible by a users touch at or through a skin surface; an elecb'onic signal for 
coupling to a user skin surface mounted or internally Implanted sensory transducing device adapted to 
produce a sensory experience for the user. 

In one aspect, the step of selecting a parti'cular output to generate from among the plurality of 
35 possible outputs includes: (i) the selection by the user when the content is received; (ii) the selection 
being selected in response to an indicator received with the content; (iii) the selection being selected in 
response to user preferences identified prior to receipt of the content; (iv) the selection being selected in 
response to client device characteristics. 

Such client device characteristics are selected from the group consisting of: client device 
40 hardware characteristics, client device software device characteristics, client device firmware 
characteristics, client device programmatic characteristics, client device data characteristics, and 
combinations thereof. 
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Where user inputs are solicited, such inputs can be selected from the group of inputs that 

include eye movements, direct sensing of brain signals with electrodes, direct sensing of neuromuscular 
signals, sensing of skin characteristics, and combinations thereof. It can be appreciated that in one 
embodiment, the tactile output device can generate a Braille tactilely sensible indicia. 

5 In one particular embodiment, the plurality of alternative expressions for the idea includes 

symbolic expressiori. The plurality of alternative expressions for the idea can also include a text 
expression for each content item Including a description of all audio and graphical content. Additionally, 
the sensory challenged user can be a sight impaired user, a hearing impaired user, a sight and a hearing 
impaired user. Furthermore, semantic information contained in the message can be associated with the 
10 message and used in conjunction with the solicited user input 

- In -yet another aspect, user input solicitation ^nd enumeratton can te perfonned by moving a 
single button to cause the selection to be sequentially highlighted or sequentially articulated or tactilely 
identified. However, it can be appreciated that the user input solicitation and enumeration can also be 
perfonmed by an act selected from the set of acts consisting of: select from articulated text, selection from 
15 items enumerated by voice, button pressing, double mouse button clicks, selection based on button 
press during an automated continuous sequential enumeration of the available selectable items, 
selection based on button presses that cause the individual enumeration of selectable items in an order 
based on which buttons are pressed and with an additional button press to perform the actual selection 
and combinations thereof. 

20 In yet another aspect of the invention regarding content adaptation and scaling using story 

element semantics, the invention provides a multi-sensory electronic content package for communicating 
with sensory impaired users, wherein the package comprising procedural portions and data portions. In 
one embodiment, there are semantic flags and text behind at least a subset of the logical elements of the 
message to be communicated. The semantic flags allow for automated procedural enumeration of the 

25 elements needed to communicate the intent of the message and user interaction methods for 
presentations in a manner conforming to the selection of a given set of flags of interest and the values 
that the flags of interest must have if each element is to included in the enumeration. 

The semantic flags* meanings indicate one or more of the following with respect to identified 
. content first level complete story message overview, second level complete story overview, first level 

30 single screen overview, second level single screen overview, contains text, contains audio, contains 
video, contains text backing, contains audio backing, contains video backing, is selectable, is visible, 
selection action description, is played back as audio for this screen, can be omitted without losing intent 
of message, suitable for hearing impaired, suitable for visually impaired, suitable for people with 
disabilities of movement, describes what happens when selection is made, describes complete list of 

35 currently selectable items, is complete text containing the entire intent of message, is objectionable for 
rendering for children under 12 years of age, is objectionable for rendering for children under 18 years of 
age, is objectionable for rendering for children under 120 years of age. contains religion related content, 
contains Christian related content, contains Jewish related content, contains Muslim related content, 
contains Atheist related content, contains material objectionable to men, contains material objectionable 

40 to women, and the like. These are merely exemplary and any other indicator for particular content type 
may be applied and coded. 
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In one particular embodiment, additional semantic flags can be added to the semantic flags to 
further refine the meaning of the semantic flags as being of a certain priority, level, or order with respect 
to the other the semantic flags which may be set for an element or set of elements. 

In yet another embodiment, a given set of flags of interest are isolated and identified by the 
5 process of perfomning a binary logical "and" operation of the set of binary flags, with a mask value 
identifying the given set of Interest In one aspect, the result of the "and" operation is compared to a set 
of required binary values to determine If the element or elements associated with the semantic flags meet 
the criteria for inclusion in the enumeration of selected elements. 

In one embodiment, the semantic flags meet the criteria if the result is found to be equal to the 
10 required binary values. In yet another embodiment, the semantic flags meet the criteria if the result is 
found to be not equaltoihe required binary values. In yet another asped, the semarific flags meet the 
criteria if the result is found to contain a number of set flag bits above a given threshold, above or equal, 
to a given threshold, below a given threshold, below or equal to a given threshold or equal to a given 
number. 

15 The semantic flags can be further refined as to their respective meaning(s). For example, a 

semantic flag can be used to indicate that identified content can be used on a particular device, 
operating environment, playback engine version or versions, and/or applk:ation. 

Story File Versioning for Story Playback Forward and Backward Version Comoatsbilltv 

20 The invention further provides a system, device, method, computer program, and computer 

program product for fonvard and backward content based version control for automated autonomous 
playback on client devices having diverse hardware and software. 

In a prefened embodiment of the system and method, it is expected that all stories ever created will run 
in all environments that are ever made appropriate for stories. This feature is referred to as content 

25 versioning or in the context of a story, as story versioning. At least in part because the story system and 
method have procedural foundations, instructions or commands are provided to adapt an old story to a 
new feature (i.e. to a newer version of a story player) or to adapt a new story to an old set of story 
features (i.e. to an earlier version of a story player). For example, using the versioning methodology, a 
story player and/or the device executing the story player adapts if the (presumably) newer procedures or 

30 instructions received in a story file could not be understood. The recognition that an Instruction is not 
understood may be based on internal programmatic comparison between known instructions (such as by 
comparing opcodes or other instruction indicators) or based on the comparison of an explicit version 
number identified in the received story file as compared to the version of the story player. 

At least in part as a result of hierarchical content or message richness where the lowest 
35 richness message or content is a text message or content, and a convention in which support for text- 
based message or content Is and will be supported for all versions of stories, at least a text based 
message or content will be interpretable and playable in all versions of stories and on all story players. In 
at least one embodiment, the story player by convenfion ignores any commands, instructions, or opcodes 
it does not understand and plays the text message. Compatible procedures are always communicated in 
40 the story files and playable within the story players. In one embodiment, the story player recognizes the 
receipt of a story file that is compatible with and contains features of a newer version of the story player 
and provides the user with an opportunity to download or othenvise acquire the updated story player 
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software or firmware, either prior to playing the received story file or at a later time. However, 
maintainirig compatibility with older story players is advantageous as in some devices it is antidpated that 
the device may not readily be ungradable or that memory requirements for a new version may not be 
sufficient with some third-party devices. 

Even if you have a story that is made rich and in the future you are using new instructions that 
wereni around at the time the prior story was generated, you will still be able to play the old story. The 
story is procedural, and if it procedurally determines that the device doesn't have some capability needed 
to execute parts of the story, then it will execute other parts that the device does recognize and 
implement. 

Players can therefore be very thin or very light. In some embodiments of the players that 
provide only a basic set offeBtures and limited richness, the core software or fimiware is only from about 
2 kilobytes to about 8 kilobytes depending upon what is provided in the core of the engine, including the 
entire run-time module. The run-time module advantageously has very little overhead as compared to 
conventional systems and methods, such as for example, as compared to RealVideo (typically about 7 
Megabyte) or Java playback engine (typically at least about 100 kilobytes or more) even though such 
typical systems and methods do less than embodiments of the inventive player. It is understood that 
some embodiments of the story player will be larger when additional optional features are implemented. 

In one embodiment, when a new version story file Is received, a determination is made by the 
story procedure itself as to the player version number or other versk»n indicia. There are actual story 
procedures that decide which version of the story player (software or hardware) is present. If the version 
of the player that it is playing on is not right, the story procedure itself branches to different procedures 
within itself that are correct for the version of the story player that will are playing the received story. 

In the preferred embodiment, it is the story procedure that decides, not the story player, as tHe 
player virill not have the Intelligence or the infonnation to make this decision. This is partlcularty tme 
where there is an old player and a new story having features that were not available when the player was 
Implemented. Typically, a story will contain several complete message Intent representations at different 
richness levels. At the head of each representation there are procedures that detennine whether the 
playback device has the capabilities to render the representation at the intended richness level. This 
determination is performed only using instoiclions know to be part of every playback engine ever made. 
If the PBE and device support the opcodes, functionality and capabilities checked for by the heading 
procedure for a rich media representation, they will execute the procedures rich media representation 
procedures. If the play back engine or device does not have the functionality and capabilities needed to 
run a particular rich media representation in the story, then the procedure will branch to the header 
procedure for the next lower-richness media representation. This determination and branching may be 
direct or iterative. Procedural tests may be combined with the branching so that alternative procedures 
may be executed depending upon the result of the conditional test or tests. A direct determination uses 
information to match a richness level of the story content to the richness level appropriate to the player in 
one step. An iterative approach progressively compares the different richness levels in the story to the 
richness level that can be rendered, starting at the highest richness level, and progressing to lower 
richness levels. Ultimately the iterative procedure matches player to an available richness level, the 
lowest richness level typically being text or some other symbolic form that can be rendered in some 
manner on all story playback engines or devices in some manner, for exarnple by displaying the text or 
using a text to speech algorithm to articulate the text. 
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in one embodiment, the playback engine version number (or otlier indicia) is used to determine 
its playback capabilities. With a properly constructed story, the playback engine should never encounter 
instructions that it does not know about or does not understand even if newer instructions and capabilities 
are contained in parts of the story. For example, if the story player is a new version, the new instructions 
included in the new version story are executed or othenwise used so that the (presumably) enhanced 
newer features associated with the hewer version stories are accessible. On the other hand, if the story 
player receiving the new version story is an old player, then the story procedure will detect this and not 
branch to or execute any procedures containing new instructions not supported by the old player. The 
manner in which the new version story is played on the old version player is not Intended to be random or 
problematic. Even though a future story feature or the associated instructions to implement that feature 
may not be known at the time the old story player was created or last updated, by convention all story 
content checks its requirements before executing any instructions that might not be supported by the 
player. Also by convention each high richness media element is backed up by a lower richness media 
element, as described elsewhere in the specification. Recall, for example that a motion video element is 
backed up by a still image element, which is backed up by a text element describing the still Image 
element. 

The terms old and new as used here are intended to represent relative versions, as it is likely 
that numerous versions of the methods and computer software will exist and that improvements and 
enhancements will be provided. Hence an old version is any earlier version, and a new version is any 
later version. 

Consider the scenario in which an old story player had been created in which motion video 
playback was unsupported. Upon receiving a new version story file having motion video, the story 
procedure checks for the player's capabilities using only instructions known to be supported in the player. 
Then, the story procedure executes alternative procedures containing only instructions now known to be 
supported by the player. Unrecognized instructions or indicia and data which might otherwise cause the 
story player to hang, crash, or othenArise fail are not encountered or executed. Rather, according to a set 
of programmatic rules, the player simply avoids executing such unknown instructions. According to the 
organization of the story file, the still image would be encountered and executed if the player supports 
playback of still images, or lacking that capability, the instruction for displaying the textual description of 
the motion video and/or still image would be executed to playback the text. Text is desirably supported in 
ail versions of stories and story players. Audio playback of a text message may also or alternatively be 
used when supported. 

It may be seen from the above example, that generally the only loss that occurs when an older 
version of a story player receives a story file created using newer story features or enhancements to 
features is that the story rendered is less rich than it might othenvise have been. Simiiariy, if an old 
version story file is received by a new player, the old story file will be played back correctly either 
because ail of the old file's instaictions and data are still interpretable by the new story player or because 
the new story player has been made aware of the old instructions and formats and performs some 
conversion to the new format. 

It will be appreciated that these features allow all stories to be played in all story players for all 
time, reduces obsolescence of old players, and increases the likelihood that the intent of a story message 
will be maintained substantially independent of the story player on which it is ultimately received and 
played. 
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The invention therefore provides system, method, and computer program for procedurally 
assuring that message intent is preserved and substantially optimized on players both older and newer 
than the story content In some embodiments, the semantic information associated with story access 
elements built into the story message is used to procedurally substantially optimize the message for the 
5 playback capabllrties while preserving the message intent in its rendering. 

Stabilitsf and Secuiitv Through Single Memory Alloca^on and Instruction Checking 

The Invention further provides a system, device, method, computer program, and computer 
program product for reducing unauthorized access by procedural messages executing in a computer 
10 system to computer system or memory or programs or data stored therein. Single Memory Allocation 
allows for small code size where maintain security avoiding attacks by hackers who would try to gain 
control or information from a story device by sending stories which access or execute their non-story 
procedures or programs through various means. Some of these means and the structures and methods 
taken to counteract them in the inventive system and method are described betow. 

15 

Security and Computer Hacker-Prooftnq 

Story implementation code has to be carefully constructed to ensure the security required for email 
based messaging that needs to work well on a large variety of devices. Great care must be taken in 
writing Story Playback Engine (SPE) code to make sure it does not introduce any security holes. 
20 Security is a very high-priority programming concern because the code will be Installed on millions of 
devices. If a hacker finds a way to take control of people's computers through a security hole in the 
software it could be a disaster for the users. 

The playback engine (PBE) code and architecture carefully guard against hackers being able to send 
email or Stories to user's devices that can do harm to or take control of the target device through security 

25 holes in the PBE software or hardware. Most security holes involve taking advantage of bugs in code to 
get control of the device. The Story Playback code is architected to be resistant to such attacks, but it 
still requires careful coding to make sure that no holes are created. For example, Story procedures 
operate in a "sandbox" manner in that no functions are allowed to access memory or files that do not 
belong to the Story that is playing. If Story procedures were allowed to open files by file name this would 

30 be an obvious way to gain access to information outside of the Story Message related files. 



No Input Buffer or Stack Overflows 

One way to gain control of a computer is by providing so much input information to a program that its 
data stmctures designed to receive that infomnation can't handle it. The data that overflows the 

36 program's data structure can overwrite other parts of the program that may eventually get executed, only 
now what Is executed is the hacker's code that wrote over the original program instmctions. If the 
receiving data stmcture is on the stack then the overflow data may ovenwrite a retum address so that a 
hacker's code will be executed upon return from a function. For these reasons story playback engine 
code always checks the size of data stmctures to be written to or read from to sure all the infomnation 

40 that is to be stored there will fit, before writing the data and that no infomnation outside the story and - 
playback engine itself can be accessed. 
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Just as attention should be provided against input buffer overflows, the SPE code or hardware also 
guards against overflow of the native processor stack (as opposed to the SPE's Story thread's stack), 
yvithout precautions in the SPE code, this could occur as a result of recursive Story parameter Indirection 
(see discussion of indirection elsewhere in this specification) or the use of deeply-nested Story 
5 subroutines. 

No Bad Indexes and No Bad Parameters Sent to the Operating System 

Functions make sure all array indexes are in range before using them. Hardware Abstraction Layer 
(HAL) functions are used to marry the portable playback engine to a particular device or OS. Care is 
10 taken to never allow invalid or out of range values to be passed to the OS functions that might cause 
these functions to overflow any of their Input buffers or otherwise cause any malfunction (e.g. crash). 
Aside from robustness, any possibility for buffer overflow or errant execution in the OS is a security hole 
that may be exploited by hackers. 

15 File Access 

The SPE will not access files directly by name, but rather by a two-number ID. These numbers 
are passed to a HAL function that can only open files located in a single temporary Story directory and 
whose names can be derived in a very specific manner from the two-number ID given. The temporary - 
directory will contain only files local to the Story currently playing. 

20 

One Memory Allocation and No Pointers in Allocated Memory 

To make it easy to defend against memory accesses outside of that memory allocated by the 
SPE itself, a single OS memory allocation call is made when a Story Initialization opcode. INIT_OP, Is 
executed. All memory allocations are made during Story execution from within this one main allocated 
25 block of memory. No (or few) pointers are allowed within the main allocated block of memory, only 
references to other sub-allocated memory buffers by number. Any pointers used within instruction 
implementation functions must be explidtly checked by catling a single function: 

void AllocatedMemoryBlockSecurityCheck 
( 

30 PSU8 pu8. 

SU32 u32_Si2elnBytes 

); 

If one knows the maximum size of the access at the time a buffer number is turned into 
pointers, then pointers to buffer memory can be checked as part of the call to: 

35 void GetPblntersFromBufferNumber 
( 

SU32 u32_BufferNumber, 

SU32 u32_MaxDataSizelnBytesForSecurityCheck. 

COMMON_BUFFER_HEADER_TYPE •*ppcbh. 




wo 02/10962 



PCT/USOl/23713 



162 



SU8 **ppu8_BufferData 



); 



10 



15 



20 



25 



30 



35 



These functions make sure the access will be within the main allocated block. This helps to 
keep the code size small, because a single function can be used to check all memory accesses without 
the need to have one function for each sub-allocation. It should be noted that Story procedures will be 
able to write over any sub-allocation block, and even write and execute complete Story procedures. The 
Important thing is that the worst outcome of a poorly coded or maliciously coded Story is an infinite loop 
within the Story execution. A Story should not be able to crash or access memory outside of its own 
allocated memory under any drcumstances. 

In this regard, the invention provides a method of maintaining anti-hacking security in a 
computer system, especially a system that executes procedural messages or other content using native 
code to carry out or othenwise perform the procdures contained in the messages. In one embodiment, 
the method comprises the native code canrying out the procedures of the message allocating, in a single 
operation (such as for example a single atomic operation) one contiguous memory block range having a 
single memory boundary position as a buffer. The buffer is used for data or other storage. The allocated 
storage buffer is protected from overflow by: reducing the number of operations a computer program 
(such as the native code) uses to carry out the procedures of the message that obtain memory pointers 
to the allocated buflier, and checking attempts to access memory locations outside of the allocated single 
memory block range only against the single memory boundary position of the single buffer memory block 
range. By so doing, the likelihood that a computer system or information appliance hacker attempting 
unauthorized access can create a buffer overflow and thereby obtain access to other memory ranges to 
gain entry or control over functions or data of the computer system is reduced if not effectively eliminated. 

In one embodiment, the inventive system and method are further defined such that the 
message procedures optionally include instructions which sub-allocate all memory regions from the 
single memory block. The message procedures may also optionally include instmctions which can 
cause the single memory block to be destroyed and reallocated when different parts of the message are 
executed, thereby providing procedural flexibility while avoiding the complexities normally associated with 
memory garbage collection algorithms. This latter feature may be further augmented such that the 
message procedures include at least one Instruction which can preserve some or all parts of the data or 
other information stored in the the single memory block in a second allocated memory block, which is 
itself also checked to make sure accesses outside of the second allocated memory block are never made 
while the single memory block is being reallocated. Finally, the second allocated memory block may be 
defined such that it is always available during execution of the the procedural messages and accesses 
are checked to be contained within one of the two allocated memory blocks. 

This method may be further defined such that the computer system includes a story player 
device. It may also be defined such that the computer code to perform memory checking is uniform and 
compact, and/or to provide for a common core of instmctions operate on memory. In the method first 
described above, the method may provide that a hacker attempting to produce a memory buffer stack 
overflow in order to introduce executable code into the system Is substantially prevented by the single 
memory range allocation and checking. In some embodiments, the computer system is provided more 
stable operation as a result of the predictable memory operating environment. 
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Self'Direct&d Buffer Loading Procedure 

The invention further provides a system, device, method, computer program, and computer 
program product for self-directed loading of an input buffer with procedural messages from a stream of 
sub-files containing sets of logical files. 

In many conventional systems, large input data or file streams are loaded into input buffers as 
they are received, then checks for ends of buffers are perfbmied as the input stream is consumed. The 
problem with this approach is three-fold. First, there is a need to constantly check to detemiine if all of 
the input data has been received, that is, If it is out of data. This imposes an execution time penalty. 
Second, different size Input memory buffers and other variable factors can cause data to be loaded in 
different places in memory and in different amounts each time the story is played whether or not on the 
same player-or-device. This-second factor -makes it tnore difficult ihan necessary to lest for and identify 
program bugs. Third, program code size is increased beyond what is necessary based on need to check 
to determine if the time to reload or reset the buffer to handle buffer switching or buffer wrap when data 
gets to the end of current memory buffer. 

In embodiments of the present invention, these problems are reduced or eliminated. Story 
instmction streams explicitly load data.detennlnistically into the input buffer. This is accomplished using 
the LOAD^OP story instruction whenever data is to be loaded. This LOAD^OP story instruction specifies 
exactly where to toad new input code into an input memory buffer from a logical file. Also this instruction 
can cause data in an Input buffer to be moved before new data is placed into the input buffer. 

This Inventive approach results in (1) less program code, (2) faster program execution, and (3) 
detenninistic behavior that lessens the probability that program bugs (particularly untested or 
undiscovered program bugs) will occur during operation. 

The invention provides a method for loading a procedural input explicitly and detenninistically 
using instnictions in the playback stream itself. With this method it Is up to the programmer or compiler 
which creates the story code to ensure that each LOAD_OP instruction loads enough of the story code 
so that another LOAD_OP will be executed before any code not in the buffer is executed, it is also 
usually necessary to bootstrap the very first loading of procedural code into the Input buffer when starting 
a new story playback. 

in one embodiment of the invention, the story player, after being initialized, performs the 
following procedure: First, the story playback engine initialization function is called before each new story 
playback begins, this initializes the story thread number zero. The zero thread state is set to "running" 
and its input buffer is set to be associated with logical file with content ID equal to zero (0) and current file 
number zero (0). The idea being that at startup it goes to logical file 0. content ID 0. and loads the first 
set of words (in one embodiment it loads the first set of thirty-two words) so it can get started. Next, the 
story playback cycle function is called repeatedly to perfonn one execution of all active (or mnning) 
threads until all of the threads have yielded. The first time the playback cycle function is called, logical 
file 0,0 (content ID=0. current file number=0) is opened and the first thirty-two (or other predetennined 
number) of 32-bit (or other size) words are read in. 

Thirty-two words was picked In one embodiment for the amount of infomiation (data and/or 
procedural information) so that there will be enough instructions to allocate memory and load more 
instructions, and not so many instructions that you waste space and execution time if you don't need it all. 
Other numbers of words to read may be used and can be any convenient number satisfying this goal. 
For example, 16, 32, 50, 64, 100, 128. or other number of words may be read. Note that there are 




wo 02/10962 



PCT/USOl/23713 



164 



10 



15 



20 



25 



30 



35 



stories that do not have more than this so It Is not necessary to read this much or to read more than this 
in later steps. Within these thirty-two 32-bit words there must be a LOAD-OP (or equivalent) if the story 
procedure is not contained in the thirty-two 32-bit words. 

The invention therefore will be seen to provide a method and various procedures or sub- 
procedures within the method that may be implemented as a computer program and stored as a 
computer program product. The invention also provides a Infonmatlon appliance, computer, computer 
system, and the like that implements the functionality provided by the method and program. 

In one particular embodiment for a computer or infonmation appliance, the method provides for 
self-directed loading of a buffer from an Input stream containing at least one procedural thread having at 
least one executable instruction. The input stream and executable instruction may frequently include 
•optional parameters associated with the executable instruction, fioweversuch optional parameters are 
not required. This embodiment of the inventive method includes several steps. First, a first story thread 
is initialized to a "running" state. Then, a particular input memory buffer from among a plurality of 
available memory buffers within the device is assigned to the first tiiread; and the the first thread input 
memory buffer to be associated with the logical file in the input stream having content ID zero (CID=0) 
and cun^ent file number zero (CFN=0) is set, so that at story playback startup the device loads from the 
first content portion (CID=0) of CFN=0=content file number. Next, execution begins with the first logical 
file in the first sub-file with CFN=0 and CID=0; and subsequent logical files within other subfiles that have 
arrived at the information appliance device or are yet to be streamed into the information appliance 
device are accessed, so that playback can begin according to predetermined criteria or preferences or 
instruction before all the sub-files and their constituent logical files have been received. The first thread 
starts the processing of the procedures and other Uireads that render the other portions of Uie message. 
All or substantially all loading of succeeding procedural and data elements of the messages is performed 
by explicit procedural load instructions. Thus the procedures are themselves self loading. One execution 
of all threads having the state of running are perfomed Including first performing one execution of the first 
tiiread having CFN=0 and CID=0: and then repeating tiie step of performing executions of tiireads until 
all of the threads have transitioned from a running state to a non-running state, each non-running thread 
triansitioning from a running state to another state. When the step of performing is performed the first 
time after initialization, opening logical file having CID=0 and CFN=0. and reading Into a buffer a first 
predetemiined number of words, where in a prefenred embodiment each word has a predetermined word 
size, which size is desirably fixed for all words. The predetermined number of words eitiier containing an 
entire story procedure or containing a load operation for loading any portk>n of the story procedure not 
contained in the predetermined number of words. 

Although the procedure described immediately above provides for ready implementation, tiie 
idea is much broader in that tiie message includes procedural portions that direct the manner in which 
the currently received portion of the message will be loaded as well as controlling the manner in which 
subsequently received portions will be loaded Into one or more input buffers. This self-direction can be 
direct when it controls its own loading, or indirect when it controls the loading of alternative procedures 
which will in turn direct tiieir own loading at a later time. 

Several variations or options for the above described method may be implemented. These are 
now listed or described briefly. The base method may provide that explicit message procedure load 
instructions are the only metiiod of procedural and data input words of the message, once the initial 
words of C1D=0 and CFN=0 have been loaded at startup. The first message thread may be defines as 
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thread number 0. The running state may further comprise a state selected from the set consisting of a 
running state, a suspended thread state, and an uninitialized thread state. Other states may also or 
alternatively be implemented. 

When and if explicit message procedure load instructions are the only method of procedural 

5 and data input words of the message as described above, a second descendant thread may optionally be 
created, associated with input buffers and have their states set as a direct result of procedures executed 
on a particular thread, such as on thread 0 starting with the initial loading of words from the logical file 
with CID=0 and CFN=0. All other threads are then created, associated with input buffers and have their 
states. set as a direct result of procedures running on the descendant threads or descendants of these 

10 threads. Furthemiore, any thread in a running state can set or reset any or all attributes of any other 
4hread orits own attributes. These optSonal -steps-enable very powerfuladditionaHeatures. 

in one embodiment, the explicit procedural load operations are implemented with a LOAD_0P 
Instruction that is provided as a member of the instruction set. Information contained in the input stream 
is detemiinistically and explicitly loaded into the Input buffer in response to execution of the load 

15 operations contained within the input stream. 

The base method including some of the optional steps and procedures described therein may 
operate with the threads comprising a general class of threads as are known in the art or with threads 
comprising StoryMail story threads as described herein. The step of performing execution may optionally 
be implemented with a story playback cycle function, and the step of repeatedly perfomiing execution is 

20 implemented by repeatedly calling the story playback cycle function. As mentioned elsewhere in this 
description, fixed word size and fixed numbers of words may advantageously be used with the invention 
generally, and in the case of this self-directed loading base method, the first predetermined number of 
words may advantageously be a fixed number of words. The fixed number of words may be chosen to 
satisfy programmatic, efficiency, and other needs and may be influenced by the nature of the content and 

25 intent of the message itself so that it would vary from implementation to Implementation. Device 
characteristics may also influence optimal number of word selection. Usually, the number of words will 
vary from 8 words to 1024 words, more typically between about 16 words and 512 words, and even more 
frequently between 1 6 words and 1 28 words. In one particular embodiment, the fixed number of words is 
32 words and provides good performance for the StoryMail content being communicated. 

30 With respect to word size, embodiments of the invention having 16-bit, 32-bit, 64-bit, 96-bit, or 

128-bit word size may be provided. These sizes are exemplary and though powers of 2 for word sizes 
are conveniently used as a result of computer (processor, memory, and the like) architectures, non- 
power of two word s^es may also be used. Fiirthennore, 8-blt words as well as larger bit words may be 
utilized but when word size Is too small or too large some compromises in performance may occur. 

35 In some embodiments of the invention, the input buffer loading is accomplished in 

predetermined fixed-length blocks. The load operation may optionally specify a particular location in an 
input memory buffer to load tlje* newly received logical file or portions thereof. The method may also 
optionally include the further step of executing an instruction causing data in an input buffer to be moved 
to another location before new data is placed into the input memory buffer. The instruction causing data 

40 in the input buffer to be moved when present may comprises a buffer data move instruction. The load 
operation instruction may optionally further cause data in an input buffer to be moved to another location 
before new data is placed into the input memory buffer. The input buffer loading procedural components 
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within the logical files explicitly and deterministlcalty use instructions In the playback stream itself for 
directing input buffer loading. These procedural components may be and preferably are self-loading. 

The method may further comprise constructing the input stream according to some set of 
rules, guidelines, or procedures to ensure that each load operation instruction contained within the 
5 stream loads enough of the stream to that another load operation instruction will be encountered and 
executed before any code not in the input memory buffer is needed. 

When a bootstrapping portion Is present, the method may optionally Include bootstrap loading 
a first portion of procedural code into the Input memory buffer when starting a new story playback. The 
bootstrap loading may for example comprises loading a procedure to initiate loading of the stream into 
10 the input buffer. 

To the extent that the Information stream has characteristics that support the self-directed 
loading features described here, the invention further includes a method for building an Information 
stream for self-directed loading and playback In a computer, infonmation appliance, or other information 
stream receiving device or system. The method includes the steps of: constructing a single physical or 
15 virtual file as a concatenation of a plurality of sub-files, which contain sets of logical files; and constructing 
each sub-ftle to include at least one procedural thread having at least one executable instruction and 
optionally including parameters associated with the instruction. The single concatenated file is build 
consistent with the above described method to provide desired self-directed loading and execution. 

The inventive methods may readily be implemented as one or more computer programs or 
20 computer program code modules that may be stored In a storage device such as ROM and/or RAM and 
executed by a processor or microprocessor in a computer or other information appliance. As such the 
invention provides the device or system preparing the information stream for transmission to a receiving 
device as well as the device or system receiving and playing back the stream. 

25 ProcedurallV'-Based Device-Neutral Display Layout and Rendering 

The invention further provides a system, device, method, computer program, and computer 
program product for device-neutral procedurally-based content display layout and content playback. As 
earlier described, like many other aspects of stories, the screen layout of displayable elements is 
performed procedurally. This provides some novel and advantageous capabilities for a procedural layout 

30 scheme using rectangular regions and one degree of freedom. In a preferred embodiment, the inventive 
system and method provide for procedurally-based layout and display of Infomnation, Including both 
graphical and symbolic (e.g. text) information, on a display device. Procedurally-based layout and 
display is advantageous as it permits the story to be authored without prior knowledge of the particular 
hardware characteristics of the device on which it will be displayed and simplifies such display. This is 

35 desirable even In the situation where the story composer determines the characteristics of the hardware 
on which the story will be displayed prior to completing authoring (composing) the story file and 
communicating it to the player because It allows for a wide degree of customization at run t'me. 

The procedural nature is advantageously described by an example relative to FIG. 9 which 
illustrates some of the relationships between the various layout and device display parameters. For 
40 purposes of this description, and to provide generality, it is assumed that exactly one of the horizontal or 
vertical directions of the display device or available display area has a fixed size. The other of the two 
directions is assumed to be infinite or at least larger than will ever be needed to display an object. These 
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assumptions are made because a single layout model with a high degree of flexibility can easily be 
implemented with scroll bars and/or paging mechanism to implement a system to display large amounts 
of screen information even when the actual screen area is more limited than the amount of information 
that you want to appear on the screen. In a preferred embodiment the horizontal dimension Is a fixed 

5 size as measured in pbcels and the vertical dimension is logically unlimited. 

Before describing embodiments of the inventive layout method in detail, certain concepts and 
definitions are set forth that assist In understanding the method and Its procedures. Particular exemplary 
instructions or operations from a code set that have been implemented on one prototype embodiment are 
set forth parenthetically after its generic description. The description of the operation generally follows 

10 the order of execution, though a more through description of embodiments of the method are provided 
below. 

First, each element to be rendered Is assigned to a display descriptor (DisplayDescriptor) 
element of a display descriptor anray buffer. In one embodiment, this is done using the display descriptor 
operation (DISPLAY_DESCR1PT0R_0P), where each display descriptor includes one or more of a 

15 display content buffer number, a screen rectangle, and a hotspot descriptor array. A set rectangle 
operation (SET_RECTANGLE_OP) is then used to set the layout rectangle (layoutReclangle). Next, a 
layout operation (LAYOUT^OP) is used to place a list of display descriptors (DisplayDescriptors) inside 
the layout rectangle (layoutRectangfe). A "horizontal-center-then-vertical-center^ layout procedure or 
method (H0R!Z0NTAL_CENTER_THEN„VERT1CAL_CENTER_LAY0UT_METH0D), may for example 

20 be used, among other possible methods. The layout rectangle (layoutReclangle) Is then reset if needed 
to layout something else according to the results of a previous layout operation (LAYOUT_OP); and, if 
there are more elements to be laid out then the set rectangle operation (SET_RECTANGLE_OP) Is 
applied for each element. 

Separate branching flags are set if a layout operation (LAYOUT_OP) found that an item does 

25 not fit in some way. For example, the Item may not fit at all, may not fit horizontally and was therefore 
wrapped to fit in additional space below a portion already displayed, or does not fit because the layout 
went outside the layout rectangle in the vertical direction. Conditional jump operation {JUMP_OP) 
Instmctions can therefore be used to perform complex procedural layout functions. 

With furtiier reference to FIG. 9, consider a visible or on-screen rectangle 1001 (the pixels that 

30 can be seen on the actual physical screen of a device having width (W) and height (H), that is a visible or 
on-screen rectangle of dimensions Width x Height (WxH). Also consider a logical or layout rectangle 
1004 used for placing spaced multiple items within the visible screen. The layout or logical rectangle 
1004 is the amount of screen that is allocated to a particular display task or set of items. Note that 
because of the presence of scroll bars and/or the assumption that the screen in infinite (or very large) In 

35 one dimension, the layout rectangle may be smaller or larger than the visible rectangle. Almost always 
the layout rectangle will lay within the boundaries of the virtual screen rectangle 1002 with width W and 
height logically unbounded. The layout rectangle is specified using instructions that specily LW, LH, and 
(x.y) coordinate, where LW is a layout rectangle width, LH is a layout rectangle height, LWxLH is the 
product of the two, and (x,y) is the location or coordinate of the upper left corner of the rectangle with 

40 respect to the visual screen rectangle 1002. A layout resultant bounding rectangle (1003) of size 
RWkRH, RW defines the outside area limits of a set of laid out elements. All item rectangle boundaries 
placed by the LAYOUT_OP instructions can be optionally added to the resultant bounding rectangle as 
they are placed. The Story may empty the resultant bounding rectangle 1003, or allow the LAYOLTT^OP 
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instructions to add to the resultant bounding rectangle 1003 of previous operations. Separate branching 
flags that can be tested by JUMP_OP conditional instructions are set by the LAYOUT_OP to indicate 
when the layout of one or multiple objects required a wrap to multiple vertical layers or horizontal layers, 
or goes outside of the layout rectangle 1004. 
5 It is noted that using the inventive methodology for a display screen using rectangular regions 

and one degree of fi-eedom. an instruction that results In eventy horizontally spaced and centered objects 
requires only two parameters, parameter P1 and parameter P2. Parameters P1 and P2 are specified in 
two display descriptor elements of the display descriptor an^ay buffer. If all of the items do not fit across 
the screen, it starts the next line a given number of pixels down, analogous to like word wrap for a word 
10 processing application. Also, if all the objects do not fit across the screen, a branching flag 'does not fit 
across" is set^and used-pmastducallyto jenable the object.to4)e.displayed in an-appropriate manner ^Iven 
the object size and the available screen size. If P1 and or P2 do not fit in layout rectangle then set* 
branching flag for "layout does not fit". One can test and branch to control layout based on these 
branching flags or other coordinate based calculation resultant 

15 Particular embodiments of the inventive method for a device-neutral procedurally-based 

content display layout and content playback method are now described. The method provides for 
procedural layout of a display screen using rectangular regions and one degree of ft'eedom, the method 
comprising the following steps: First, assigning a display descriptor element of a display descriptor anray 
buffer to each item to be rendered on the display, where each the display descriptor element includes a 

20 display content buffer number, a screen rectangle, and a hotspot descriptor array number. The display 
content buffer number identifies the item to be displayed; the screen rectangle Identifies the area of the 
screen on which to display the item; and the hotspot descriptor array contains hotspot elements which 
each contain semantic flags, information, and buffer numbers which can be used to control, find or select 
other alternative media representations or informative media associated with the item. Next, assigning a 

25 layout rectangle to layout zero or more items spatially with respect to each other and the layout rectangle; 
and, intelligently setting a bounding rectangle as items are laid out Finally, carrying out farther layout 
operations based on the bounding rectangle results of previous layout operations and/or based on status 
and branching flags set or reset while laying out the items; and, as long as there are more items to be 
laid out, then repeatedly applying the set of rectangle based operations for each item or set of items to be 

30 laid out. 

The basic content display layout and content playback method may optionally incorporate 
various other features. Some of these features are now listed or briefly described: The display 
descriptor assignment may be performed using a display descriptor operation. The display descriptor 
operation can include zero or more optional steps selected from the steps consisting of. setting descriptor 

35 flags, setting the display item's buffer number, setting the screen rectangle, setting the hotspot array 
buffer number, and any combination or selection of a subset of these steps. The layout rectangle may be 
defined using a set rectangle operation. The layout operation comprises a LAYOUT_OP operation. 
Separate branching flags may be set as a result of a layout operation determining that an item or set of 
items to be displayed does not fit inside the layout rectangle In any of a number of ways, and these flags 

40 may be set or reset when the item or items do or do not fit horizontally inside the layout rectangle, and/or 
the flags are set or reset when the item or items to be laid out do or do not fit vertically when wrapped 
into the display rectangle. 
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In addition, a layout operation may be used to place the list of display descriptors inside the 
layout rectangle, and optionally, laying out the item or set of items using a first horizontal center then a 
vertical center procedure. Alternatively or additionally, laying out the item or set of items using a first 
vertical center then a horizontal center procedure. The display desaiptor element may for example 
contain a picture buffer number Furthemiore, the picture buffer number may optionally define a picture 
in RGB, RGBA. YUV. YcbCr, or Y fomnat. The display descriptor element may alternatively or in addition 
include a text buffer number. The picture buffer number defines the text in ASCII, UNICODE, or multi- 
byte character format. 

Conditional jump operation instructions may be used to perform complex procedural layout 
functions, the jump operation Instructions directing procedures to perfomi intelligent operations according 
to the layout jop.eratiQns* .rfisulls,or .flag settlngs..and optionally, the conditional jump operation comprises 
a JUMP^OP instnjction operation. 

The layout method may be procedurally based to layout and display information on a display 
device. Optionally, the information is selected from the set of information items consisting of graphical 
infomnation, textual infonnation, character infomiation, symbolic infomiation. The information includes 
written language in any alphabet, character set, or other language representation. The procedurally 
based layout and display may comprise layout mode type operations, Including operations selected from 
the set of operations consisting of: horizontal only, horizontal evenly spaced, vertically only, vertically 
then horizontal, centered, items spaced a fixed distance apart horizontally, items spaced a fixed distance 
apart vertically, and combinations thereof. The procedu rally-based layout and display operations pennit 
content to be successfully authored to display in an acceptable manner without prior knowledge of the 
particular hardware characteristics of the device on which the content will be displayed. In the prefenred 
embodiment, the content comprises a StoryMail story, however the method is not limited to this particular 
content type. The procedurally-based layout and display operations pennit content to be more easily 
authored for display on a variety of display devices, and the procedurally-based layout and display 
operations permit content to be authored in a display hardware neutral manner without regard for 
particular display device hardware and/or display device driver characteristics. The procedurally-based 
layout and display also permitting content playback to be customized during its run-time on the player. 
Customization may for example be performed by the Hardware Abstraction Layer (HAL), and/or in 
response to user commanded preferences. The procedurally-based layout and display permits content 
to be authored in a display hardware neutral manner even when hardware characteristics are known in 
advance of authoring the content without regard for particular display device hardware and/or display 
device driver characteristics. 

The invention also provides an embodiment of the inventive method for laying out two- 
dimensional items on a display screen having fixed physical dimensions and width and height dimension 
that are logically unbounded, and where at least one of the items to be displayed may require more 
display screen area that in physically available. This embodiment of the method includes the steps of: (i) 
providing means for logically extending the height dimension for display of objects in a first screen 
direction, the first screen extended dimension representing a virtual screen dimension; (ii) generating or>- 
screen or visible rectangle of physical picture elements (pixels) having wkith (VV) and height (H); (HI) 
generating a logical or layout rectangle allocated to a particular display task for placing spaced multiple 
items within the visible screen, the layout rectangle having the possibility of being either smaller than, 
larger than, or equal in dimension to the visible rectangle owing to the presence of the logical display 
extension means; (iv) specifying the layout rectangle with instructions that specify (i) a layout rectangle 




wo 02/10962 PCT/USOl/23713 

170 

width (LW). a layout rectangle height (LH), and the location or coordinate of a comer (such as the upper 
left comer) of the layout rectangle with respect to the visual screen rectangle; (v) generating layout 
resultant bounding rectangle having size RW x RH where RW defines the outside width limits of a set of 
laid out items; and (vl) laying out the items using the bounding rectangles in combination with procedural 

5 instmctions to layout, position, set layout rectangles, and define which items are to contribute to the 
bounding rectangles used to re-layout an item or set of items, or lay out an additional item or set of items. 

The inventive method for laying out two-dimensional items on a display screen having fixed - 
physical dimensions and width and height dimension that are logically unbounded, may also be modified 
with various alternative and/or additional procedures for particular situations. Some of these alternatives 

10 and additions are now listed or briefly described. The means for logically extending may. for example, 
.comprise a scroll^nechanism and one or more scroll bars. The-means for logically extending-the tlisplay 
may alternatively comprise a display paging mechanism. 

The method may also provide that any laid out items contributing to a resultant bounding 
rectangle may be subtracted from the resultant bounding rectangle prior to the final layout of additional 

15 items. New items may be added to items laid out to be displayed in the resultant bounding rectangle in 
prior operations, and/or new items may be combined with existing Items in the resultant bounding 
rectangle according to predetemiined logical or mathematical procedures. Additional items are laid out in 
the resultant bounding box window using the layout operation instruction. 

The method may optionally further comprising setting branching flags to indicate when the 

20 layout of an item or set of items (i) required a wrap to multiple vertical layers, (ii) required a wrap to 
multiple horizontal layers, (iii) goes outside the layout rectangle, or (iv) identifies another predetermined 
condition. The branching flags may include a "does not fit across" which is set if all the items do not fit 
across the screen and used procedurally to enable the object to be laid out for displayed in an 
appropriate manner given the item size and the available screen size or virtual dimensions. A test and 

25 branch operation may be used to control layout of objects based on the branching flags. » The method 
may further comprising step of using a test and branch operation to control layout of items based on 
predetenmined display size and/or coordinate based calculation results. 

Thin Low-Overhead Story Player Run'Tlme System and Method 

30 The invention further provides a system, device, method, computer program, and computer 

program product for thin procedural multi-media player run-time engine having application program level 
cooperative multi-threading and constrained resource retry with anti-stall features. 

Embodiments of the invention desirably provide a thin low-overhead multimedia procedural 
content player (for example, a StoryMall or story player) run-time system and method. Recall that In at 

35 least some embodiments, the story files are sequences of fixed length words (for example. 32-bit words) 

of the form "Instructionl. parami, param2 lnstruction2, parami, param2, paramS InstructionN, 

parami , .... paramM". 

In one embodiment, the story playback engine apparatus and method operates on this 
sequence by fetching the next word in the sequence (for example *'lnstmction2") and branches to or 
40 othenwise executes a function within the function library based on the value (or other indicia) of that word. 
The function then: (i) fetches the parameters that follow the instruction (for example, "parami. param2. 
"paramS, .... etc.); (ii) perfomfis the instruction using the function and parameters; Oii) advances the 
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program counter past the parameters to the next Instmction; and, (iv) returns a status code, for example, 
a status code indicating the successful completion or enror status of the function. 

The run-time module, program, system, and method are thin, that is require only a small 
amount of code and memoiy. In one embodiment, requiring fewer than 60 lines of "C" program language 
5 code. They are low-overhead relative to conventional run-time systems because no sophisticated 
parsing, threading, synchronization, memory allocation or garbage collection mechanisms are needed. 
Also multimedia functions that need to be performed may easily be optimized for each device or 
environment. Execution is quick and con-esponding power requirements are low because the processor 
intensive functions such as inverse discrete cosine transforms (IDCTs) are performed with large sparse 
10 native processor code as part of an op-code's implementation, while all the control and navigation are 
performed In the very compact and very compressibie^tory.Ianguage instructions. 

Because story language code is small and the run-time mechanism uses the same small 
functions over and over, large programs can be run without leaving the data and code caches of many 
CPUs and computers. In a conventional run-time system, there are many layers of abstract modules of 

15 functionality with complex algorithms that must be implemented. Example algorithms are: (1) Thread 
creation and round robin thread scheduling along with thread priority systems, (2) Memory allocatbn 
functions. (3) Memory garbage collection functions, (4) Interrupt system functions. (5) Picture 
decompression algorithms such as MPEG2, Multimedia playback system and user controls, video/audio 
synchronization algorithms. Such Implementations require at least 500K bytes of native code to 

20 implement, and often several megabytes of native code. In comparison all these functions can be 
implemented for tiie playback of multimedia application or messages in story format in less than 50K 
bytes. 

The run-time model also desirably provides for cooperative multi-threading. The cooperative 
■ multi-threading also desirably includes constrained resource retry. Under this scheme, sequences of 
25 instructions for a thread are run as long as the instruction functions return a status code of success (or 
the equivalent successful status indicator). Then the next thread is executed as long as its instructbn 
functions each retum a status code of success. Any instruction that takes a long time to complete will 
return a yield (or equivalent) status code, so that the otiier threads will get a chance to run. This 
cooperation exists at the level of tiie application. 

30 Thread synchronization is also provided. A wait until time (TIME_OP) type instmction will not 

complete until a set time. The set time may be defined in a variety of ways and may refer to a relative 
time, whether or not using indirection plus post operations, or to an absolute time. If it Is not time for the 
instruction to be ^executed (or to complete) it will return a retry instmction type status 
(RETRYJNSTRUCTION_RETURN_CODE), causing tiie next thread to execute. Each time the 

35 TlME_OP containing thread starts again it will retry tiie same instruction until the set time. This is 
another feature of tiie cooperative multi-threading with resource constrained retry described elsewhere in 
this application. In this particular example, tiie constrained resource is time and the instruction is retried 
if the time is not the set time, or within some predetermined difference from the set time. Any instruction 
that needs a memory buffer will in similar manner, return RETRYJNSTRUCT10N_RETURN_C0DE if 

40 the buffer is not available. Global flags can also be used to synchronize tiireads using a wait for flag in a 
TIME_OP instruction. Informative status codes tiiat provide more particularized information relative to an 
operation or process may also be provided in addition to the afore described success, enror, yield, and 
retry status codes or indicators. 
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Having described some of the characteristics of the content player and playback engine and method, 
attention is now focused on exemplary embodiments of the inventive structure and method for the player 
run-time engine. 

In one embodiment, a small low-overhead content playback engine comprising: a main or 
5 primary thread execution block that executes cooperative player engine threads in turn. Such in tum 
execution may be sequential or include non-sequential execution with branching, conditional testing, and 
the like. In one embodiment, the primary thread execution block is implemented in portable code, while 
in another embodiment the block is implemented using native processor code. Hardware implementation 
of the primary thread execution block is also supported as are hybrid hardware/software and 
1 0 hardware/finmware implementations. 

The run^lime playback engine also includes a bodt-up sequence blodc that operates to assign 
an instruction input buffer to a startup thread, loads the first procedural multi-media player instructions, 
and starts the startup thread in a running state. An instruction dispatcher block fetches each instruction 
word of a thread in sequence or as directed by branching instmctions, and calls a native code function or 

1 5 hardware block to execute each instruction word and the parameters that follow it in tum. A set of native 
code functions or hardware blocks which together carry out the functions of the multi-media player 
instruction words and parameters; and a hardware extraction layer implemented in native code functions 
or hardware blocks that marry the portable portions of the player engine to the parts that are specific to 
the application or device that makes use of the player are also provided in the run-time player structure. 

20 in a preferred embodiment, the mn-time playback engine is adapted to playback content comprising a 
StoryMail story. 

The inventive method for a multi-media procedural content player engine may utilize the afore 
described structure or other general purpose or specialized structures and is particulariy adaptable due to 
the many hardware or device-neutral characteristics provided. In one embodiment, the method 

25 comprises: (a) receiving a file for playback comprising at least one sequence of fixed length words 
organized by having a plurality of Instructions an^anged as a linear sequence where parameters 
associated with a particular instruction immediately follow the particular Instruction and wherein 
subsequent instructions follow the parameters associated with a previous instruction; (b) operating (such 
as in or by the playback engine) on the sequence of instructions and parameters. This instruction and 

30 parameter sequence processing including fetching the next word in the sequence, where the word 
includes an Indicia of the function to be performed; executing the identified function; and when the 
identified function utilizes parameters, the function then: (i) fetching the parameters that follow the 
Instruction; (ii) perfomiing the instruction using the function and parameters; (iii) advancing a program 
counter past the parameters to the next instruction in the sequence; and, (iv) retuming a status code for 

35 the instruction. 

Different embodiments of the Inventive system further define the inventive apparatus, system, 
method, and computer program to provide additional features and capabilities. Some of these are now 
briefly described. 

The procedurally-based content player engine and method may optionally utilize a status code 
40 where the status code is selected from the set of status codes consisting of a success status code, an 
error status code, a yield status code, a informative status code, and a retry instruction status code. 

The instruction and parameters may be arranged with sequential sets of instructions 
(Instruction) and parameters (param) where the parameters pertaining to a particular instruction 
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sequentially follow the Instmction to which It or they pertain and precede the next instruction in a scheme 

such as "Instruction^ paramla, paramlb, lnstruction2. param2a, param2b. param2c InstrutionN, 

paramNa paramNm" for a sequence of N instructions. 

In prefen-ed embodiments of the invention, the files received for playback includes at least one 

5 sequence of the fixed length words. The fixed length words may desirably be selected from the set of 
fixed length word sizes consisting of 8-bit words, 16-bit words. 32-bit words, 40-bit words. 64-bit words, 
96-bit words, 128-bit words, 256-bit words, 512-bit words, and any other fixed length word or byte size. 
In one embodiment, 32-blt words are conveniently used. Fixed word lengths need not be powers of 2. 
The fixed length words and parameters may be comprised of numeric and/or symbolic values in any 

10 combination. Instruction values identify individual functions within a library of functions, where some 
instruction values optionally jdeQtifyjQne.or.roore.b£anchinstructions. 

In one embodiment, the run-lime module program(s) is thin and implemented with fewer than 
between about 50 lines of code and about 200 lines of program code. In another embodiment the run- 
time module program(s) is (are) thin and implemented with fewer than about 50 lines of C language 

15 program code. In either case, the run-time module has a low-overhead relative to conventional run-time 
systems because no sophisticated parsing, threading, synchronization, memory allocation or garbage 
collection mechanisms are needed. Furthermore, execution speed is increased relative to conventional 
methods because processor intensive functions are performed with native processor code as part of an 
op-code's implementation, and all the control and navigation are performed in the very compact and very 

20 compressible story language instructions. 

In at least some embodiments, the inventive system and method provides a run-time engine 
that eliminates the need to implement any of the following complex algorithm types: (0 thread creation 
and round robin thread scheduling with thread priority systems, (li) native operating system or C library 
memory allocation functions, (lii) memory garbage collection functions, (iv) interrupt system functions, (v) 

25 picture decompression algorithms, (vi) multimedia playback system, (vil) user controls, and (viii) video 
and/or audio synchronization algorithms. 

Furthermore, the size of the native code to perform playback of multimedia application or 
messages in story format is no more than from about 30 kilobytes to about 300 kilobytes, and in one 
implementation the size of the native code to perform playback of multimedia application or messages in 

30 story format is no more than about 50 kilobytes, while in another implementation is no more than about 
100 kilobytes, in yet other embodiments having a greater feature set size of the native program or 
software/Rnnware code is less than about 500 kilobytes. Given these code sizes, it is dear that the size 
of native code is reduced by a factor of from about 5 to about 1000 as compared to conventional 
implementations that would attempt to provide generically similar operation (if even possible), and 

35 routinely the native code may be reduced by about a factor of 100 as compared to conventional 
implementations. 

In preferred embodiments of the invention, the method and structure provide for a run-time 
module that supports cooperative multi-threading of various tasks, including but not limited to audio, 
visual, or audioA/isual special effects. 

40 In yet another embodiment, cooperative multi-threading occurs at the level of the application 

program as compared to multi-threading or multi-tasking that may occur at the level of the operating 
system. Preferable, the cooperative multi-threading procedure further includes a constrained resource 
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level of the application program. 

In a further embodiment, the run-time module program mechanism uses a common set of small 
functions over and over again to provide the functional capabilities of larger conventional programs so 
that tasks can be run within the data and code caches of at least some processors of conventional 
computers and information appliances. Desirably, and for purposes of energy consen/ation, heat 
dissipation reduction, and other efficiency and design factors, the method is electrical power conservative 
because processor intensive functions are performed with optimized native processor code as part of an 
op-code's implementation, and all or substantially all the control and navigation are perfomied In the very 
compact and very compressible story language instructions. In particular, one embodiment provides for 
.processor intensive functions jnctudingJnverse disciBte .cosine lransforms.(IDCTs}. 

The story language code is desirably small and the method is performed with fewer layers of 
abstraction functionat modules and less complex algorithms than in conventionally used Implementation 
strategies. 

When multi-threaded with constrained resource retry procedure is implemented, one 
implementation includes the steps of: running sequences of instructions for a thread as long as the 
instoiction functions retum as status code of success, and then executing the sequences of instructions 
for the next tiiread for as long as the instruction functions retum a status code of success; a yield status 
code being returned for any instruction or sequence of instructions that takes more than a predetermined 
time to complete so that other tiireads and their instructions will have an opportunity to run. The status 
code may be set to retry when a constrained resource blocks the execution of the instruction, thereby 
allowing other threads to run before the instruction is retried. 

The resource constraint on which execution may depend may be broadly defined. For example 
the resource constraint may be selected from the set of constrains consisting of: time being greater than 
some predetermined value, time being less than some predetermined value, time being equal to some 
predetermined value, a buffer being available, a buffer not being available, a variable being less than a 
predetermined value, a variable being greater than a predetermined value, a variable being equal to a 
predetennined value, a variable having any predetermined logical or arithmetic relation to a reference 
value, a hardware device being ready, a hardware device not being ready, an electronic communication 
or protocol having been completed, an electronic communication or protocol not having been completed, 
combinations thereof, as well as any other temporal (time), parameter, hardware or software condition, 
value, or status. 

Memory or buffer space or availability may also be used as a constrained resource and an 
instruction that needs a memory buffer will retum a retry Instruction status code if the needed memory 
buffer is not available. 

The use of the retry instruction status reduces tiie possibility or likelihood of stalling the 
processor as a result of a resource not being available when needed. Thread synchronization is achieved 
using a Vait for" flag in a "wait until" time instiuction, the "wait iof flag comprising a variable which may 
Itself be an element of a memory buffer. 

The inventive method may further provide for thread or media playback synchronization. Such 
synchronization may for example include one or more of synchronization of: input, video playback, audio 
playback, special effects of video, special effects of audio, or combinations thereof. 
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The execution of a %vait until time" type mstruction being an instruction type that will start 
execution and/or not complete execution until a predetennlned set time or set times, in one particular 
embodiment, the wait until time instmction comprising a TIME_OP story language instmction. When time 
is Involved, the set time may be defined by a reference to a relative time, whether or not using indirection 

5 plus post operations, to an elapsed time difference, or to an absolute time reference. In some 
embodiments, the "wait until time" type instruction returns a retry instruction status if it is not time for the 
instruction to be executed and/or to complete execution, the return of the retry instruction status code 
causing execution of the next thread to execute. In this case, each time the Vait until time" instruction 
containing thread starts again it will retry the same Instruction until the set time. This represents a 

10 situation where the set time is a constrained resource. When time is a constrained resource and the 
instruction constrained by time is retried if the time is not the set time or within some predetennined 
difference fi^om the set time. 

Therefore the invention provides a thin procedural media player run-time engine and method 
having application program type level cooperative multi-threading and constrained resource retry with 

1 5 processor anti-stall features. 

Additional Description 

Having described many different embodiments and aspects of the invention including 
numerous computer and computer systems, information appliances, prognam and data structures, 

20 methods for authoring or othenvise generating content Including StoryMail story file content, and a mired 
array of techniques, procedures, and structures for generating and rendering stories and other content in 
an efficient and message intent preserving content, we briefly summarize selected embodiments that 
have particular significance. The highlighted embodiments that follow should not be Interpreted as the 
only embodiments of importance as the large number and combination of structures and methods 

25 necessarily limits the practicality of describing them all here. 

The invention provides a system, device, method, computer program, and computer program 
product for a hardware architecture neutral computer program language and structure and method for 
execution. In a first embodiment of a hardware architecture neutral executable program structure for 
execution in a processor, the program structure comprising: a plurality of instruction threads selected 

30 from a library of possible instmction threads; a plurality of data parameters integrated among at least 
some of the instruction threads and influencing execution of the instruction threads; and at least some of 
the selected instruction threads being adapted for cooperative execution with other of the instruction 
threads by yielding ownership of the processor upon the occurrence of a predetermined condition. 

This first program structure may be further defined in a second embodiment such that the 
35 Instructions comprise operation codes representing commands executable in a processor. This first 
program structure may be further defined in a third embodiment such that the predetermined condition 
comprises the yielding instruction yielding after a predetermined time period of ownership. It may be 
further defined in a fourth embodiment such that the predetermined condition comprises the yielding 
instruction yielding upon determining that a required resource is constrained. This fourth embodiment 
40 may be further defined in a fifth embodiment such that the constrained resource is selected from the 
group consisting of a memory buffer, an input device, an output device, an input/output device, a digital 
audio processor, a display device, a communication link, a communication bus, a buffer, a data 
compression processor, a data decompression processor, a vertical refresh signal (so user does not see 
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display screen refresh), a time limit being exceeded or not yet being exceeded, and combinations 
thereof. This fifth embodiment may be further defined in a sixth embodiment such that a characteristic of 
the constrained resource is the constraining condition associated with the resource. This sixth 
embodiment may be further defined in a seventh embodiment such that the characteristics are selected 
from the group characteristics consisting of: a buffer existing, a buffer not existing, a buffer being 
initialtzed. a buffer being uninitialized, a buffer holding a set of data, a buffer not holding a set of data, a 
buffer holding a subset of a set of data, a buffer not holding a subset of a set of data, and combinations 
thereof. This sixth embodiment may be further defined in an eighth embodiment such that the 
characteristics are selected from the group of an input device, output device, or input/output device 
signaling that \i is available, not available, has text, selection, location, textural or other input data 
available or not available and combinations thereof. This sixth embodiment may be further defined in a 
ninth embodiment such that the characteristics are selected from the group of characteristics consisting 
of: a digital audio processor, display device, a communication link, a communication bus, a buffer, a data 
compression processor, a data decompression processor, a vertical refresh signal being in a ready state, 
a vertical refresh signal not being in a ready state, condition where capacity or features are assured or 
not assured, and combinations thereof. 

The first embodiment may be further defined in a tenth embodiment such that the instruction 
thread is selected from the group of instruction threads that: perform a navigation; make a decision; scale 
a data item; decompress a data item; set a parameter; use a parameter; circulate a parameter; generate 
data; generate a parameter or instruction stream; parse a data item; format a data item; select a data 
item; test a data item; respond to an input; send messages; receive messages; receive responses to 
messages; request file from a server or other source; store data; perform calculations; perform an 
animation; perform signal or image processing; respond to a data or command from a user; send a 
message; request a file; request additional data in a data stream; request data and/or commands In a 
stream of data and/or commands; navigate; make a decision; scale; decompress; set, use, and calculate 
parameters; cause audio to be rendered, cause video to be rendered generate other data and/or 
procedural streams; parse, format, and select text and other media elements such as images, graphics, 
and audio; respond to item selection by a story player user; request further files during streaming, fonnat 
Xf\^L (or XML extensions); format text; validate user input; perform calculations, simulations, animations, 
spedal effects, signal processing, run-time scaling and synchronization tasks; and combinations thereof. 

This tenth embodiment may be further defined in an eleventh embodiment such that the data 
items are selected from the set of data items consisting of a digital image media data item, a digital audio 
media item, transition and special effects control data and combinations thereof. This tenth embodiment 
may be further defined in a twelfth embodiment such that the response to data or commands, or other 
input from a user comprises responding by causing a program subroutine or other computer program 
code to be executed on the thread in which the input, data, or commands are detected. This tenth 
embodiment may be further defined in a thirteenth embodiment such that the requesting additional data 
and/or commands in a stream of data and/or commands comprises requesting additional ones of the 
instruction threads integrated with the data parameters. 

The first embodiment may be further defined In a fourteenth embodiment such that the 
cooperative execution is under programmatk; control. The first embodiment may be further defined in a 
fifteenth embodiment such that the predetermined condition is either (i) yielding after a predetemnined 
time period of ownership, or (ii) yielding upon determining that a required resource is constrained, or (tii) 
a combination of yielding after a predetermined time period of ownership, and yielding upon determining 
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that a required resource is constrained. This fifteenth embodiment may be further defined in a sixteenth 
embodiment such that the resource being constrained comprises the resource being unavailable at the 
time access to the resource is required. This fifteenth embodiment may be further defined in a 
seventeenth embodiment such that a predetennined time period of ownership is established 
programmatically. This fifteenth embodiment may be further defined in an eighteenth embodiment such 
that a predetennined time period of ownership is provided as a parameter vvithin the message. This 
sixteenth embodiment may be further defined in a nineteenth embodiment such that the operation codes 
comprise integers and an association between the integer and an operation is identified by a table look 
up procedure, the integers providing a compact representation of the operations. 

The first embodiment may be further defined in a twentieth embodiment such that the program 
stnK^fure .further including an instruction thread retry attribute -associated with at least some of the 
possible instruction threads, the retry attribute causing the processor to repeatedly retry to execute an 
instruction thread that has yielded ownership of the processor either (i) after a predetermined time period 
of ownership, (ii) after running all of the active threads until each has yielded the processor, or (iii) upon 
determining that a required resource Is constrained. 

The first embodiment may be further defined in a twenty-first embodiment such that the 
instructions comprise operation codes representing commands executable in a processor; the 
predetermined condition comprises the yielding instmction yielding after a predetermined time period of 
ownership, or the yielding Instruction yielding upon determining that a required resource is constrained; 
the constrained resource Is selected from the group consisting of a memory, an input device, an output 
device, an input/output device, a digital audio processor, a display device, a communication link, a 
communication bus, a buffer, a data compression processor, a data decompression processor, a vertical 
refresh signal (so user does not see display screen refresh), a time limit being exceeded or not yet being 
exceeded, and combinations thereof; and the instruction thread is selected from the group of instruction 
threads that perform a function selected from the set of functions that: perform a navigation; make a 
decision; scale a data item; decompress a data item; set a parameter; use a parameter, circulate a 
parameter; cause audio to be rendered; cause video to be rendered; generate data; generate a 
parameter or instruction stream; parse a data item; format a data item; select a data item; test a data 
item; respond to an input; send messages; receive messages; receive responses to messages; request 
file from a sender or other source; store data; perfonn calculations; perform an animation; perfomi signal 
or image processing; respond to a data or command from a user; send a message; request a file; request 
additional data in a data stream; request data and/or commands in a stream of data and/or commands; 
navigate; make a decision; scale; decompress; set, use, and calculate parameters; generate other data 
and/or procedural streams; parse, format, and select text and other media elements such as images, 
graphics, and audio; respond to item selection by a story player user; request further files during 
streaming, format XML (or XML extensions); format text; validate user input; perform calculations, 
simulations, animations, special effects, signal processing, run-time scaling and synchronization tasks; 
and any combination thereof, v * 

In a twenty-second embodiment, the invention provides a method for cooperatively executing a 
plurality of code threads in a processor, the method comprising steps of: (a) communicating a plurality of 
code threads, including a first code thread and a second code thread, to a processor for execution; (b) 
setting a program counter for execution of the first code thread; (c) allocating ownership of the processor 
exclusively to execution of the first code thread and executing the first code thread until the first code 
thread completes execution, except stopping execution of the first code thread and yielding ownership of 
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the processor by the first code thread during the execution to the second code thread upon the 
occurrence of a predetermined first code thread yield condition; (d) if execution of the first code thread 
has been stopped, then storing an indication that execution of the first code thread has been stopped, 
including a program counter value for the stopped first code thread, In a storage location; (e) setting the 
5 program counter for execution of the second code thread; (f) allocating ownership of the processor 
exclusively to execution of the second code thread and executing the second code thread until the 
second code thread completes execution, except stopping execution of the second code thread and 
yielding ownership of the processor by the second code thread to any other one of the plurality of code 
threads upon the occurrence of a predetennined second code thread yield condition; (g) reallocating 
10 ownership of the processor and re-executing the first code thread according to predetemiined processor 
ownership reallocation rules; (h) retrying execution of the yielded first code thread including setting the 
program counter with the stored program counter for the stopped first code thread and re-executing the 
first code thread; and (i) repeating steps (b) through (g) for each of the plurality of code threads until each 
of the plurality of code threads has been executed. 

15 This twenty-second embodiment may be further defined In a twenty-third embodiment such that 

the predetermined first code thread yield condition comprises yielding after a predetermined time period 
of processor ownership. This twenty-second embodiment may be further defined in a twenty-fourth 
embodiment such that the predetermined first code thread yield condition comprises yielding upon 
determining that a resource required for execution Is constrained. This twenty-second embodiment may 

20 be further defined In a twenty-fifth embodiment such that the predetermined first code thread yield 
condition and the second code thread yield conditions are each selected from the group consisting of: (1) 
yielding after a predetermined time period of ownership, or (ii) yielding upon determining that a required 
resource is constrained, and a combination thereof. 

This twenty-third embodiment may be further defined in a twenty-sixth embodiment such that 
25 the cooperative execution of the plurality of Instruction threads is achieved by establishing the 
predetermined time period of ownership of at least selected ones of the plurality of threads as a 
instruction thread execution parameter communicated with the instmctlon thread. 

In a twenty-seventh embodiment, the invention also provides a method for cooperatively 
executing a plurality of code threads in a processor, the method comprising steps of: sequentially 

30 executing a plurality of code threads until a predetermined code thread yield condition is detected for a 
particular code thread; stopping execution of the particular code thread for which the thread yield 
condition was detected; storing an indication that execution of the particular code thread was stopped 
before completion in a memory storage location; resuming sequential execution of the plurality of code 
threads at the next sequential code thread following the particular code thread; retrying execution of the 

35 particular code thread during the resumed sequential execution according to predetenmined rules for 
preempting a next sequential code thread and retrying execution of the particular code thread in 
preference to a next sequential code thread. 

This twenty-seventh embodiment may be further defined in a twenty-eighth embodiment such 
that the step of retrying includes storing an indicator for the preempted next code thread and retrieving 
40 the stored indicator for the particular code thread. This twenty-eighth embodiment may be further defined 
in a twenty-ninth embodiment such that the stored indicator for the preempted next code thread 
comprises a program counter value for the preempted next code thread, and the stored indicator for the 
particular code thread comprises a program counter value for the particular code thread that was yielded. 
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This twenty-ninth embodiment may be further defined in a thirtieth embodiment such that the step of 
resuming the sequential execution of code threads after the particular code thread has been executed by 
retrieving the stored program counter value for the preempted next code thread. This twenty-seventh 
embodiment may be further defined in a thirty-first embodiment such that the code thread yield condition 
comprises yielding after a predetermined time period of processor ownership. This twenty-seventh 
embodiment may be further defined in a thirty-second embodiment such that the code thread yield 
condition comprises yielding upon determining that a resource required for execution is constrained. 
This twenty-seventh embodiment may be further defined in a thirty-third embodiment such that the 
predetermined first code thread yield condition and the second code thread yield conditions are each 
selected from the group consisting of: (i) yielding after a predetermined time period of ownership, or (ii) 
yielding upon determining that a required resource Is constrained, and a combination thereof. This 
twenty-seventh embodiment may be further defined in a thirty-fourth embodiment such that cooperative 
execution of the plurality of instruction threads is achieved by establishing the predetermined time period 
of ownership of at least selected ones of the plurality of threads as a instruction thread execution 
parameter communicated with the instruction thread. This twenty-seventh embodiment may be further 
defined in a thirty-fifth embodiment such that cooperative execution of the program Instruction threads is 
achieved by detecting a resource constraint and returning a code to the instruction dispatcher to set the 
program counter to point back to the same retumed instruction before yielding to the next thread. 

The invention provides a system, device, method, computer program, and computer 
program product for autonomous generation of customized file having procedural and data elements from 
non-procedural flat-file descriptors. In a first embodiment of a method for automatically and autonomously 
generating a customized combined data and procedural file from non-procedural flat file descriptions, the 
method comprising steps of: retrieving a plurality of flat file format content precursors from at least one 
storage location; segmenting the retrieved plurality of flat file format content precursors into segments 
comprising procedural representation sequences; generating linkage information sequences for the 
segments; binding the segments and linkage information sequences into a set of logical files; and 
packaging the set of logical files into a single story file. 

This first embodiment may be further defined in a second embodiment such that the linkage 
information sequences are generated by a procedure selected from the set of procedures consisting of a 
segmentor procedure, a transcoder procedure, a combined segmentor and transcoder procedure, and 
combinations thereof. This first embodiment may be further defined in a third embodiment such that the 
step of binding further includes receiving inputs identifying story player device characteristics. This first 
embodiment may be further defined in a fourth embodiment such that the step of binding further includes 
receiving inputs identifying story player device user preferences. This second embodiment may be 
further defined in a fifth embodiment such that the transcoding includes recehring inputs Identllying 
communication channel bandwidth characteristics. This second embodiment may be further defined in a 
sixth embodiment such that the transcoding Includes receiving inputs identifying story player device 
characteristics, story player device user preferences, and communication channel bandwidth 
characteristics. 

The first embodiment may be further defined In a seventh embodiment such that the step of 
binding further comprises selecting particular sequences of segments to concatenate into each k)gical 
file. This first embodiment may be ftjrther defined in an eighth embodiment such that the packaging 
further comprises assembling a plurality of the logical files into a single story file. This eighth 
embodiment may be further defined In a ninth embodiment such that a single story file comprises a 
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pJuraHty of logical files. This ninth embodiment may be further defined in a tenth embodiment such that - 
each logical file component encapsulates control and/or content. This ninth embodiment may be further 
defined in an eleventh embodiment such that each logical file component encapsulates one or more of 
computer program instructions, control information, user input fomns, validation procedures, and/or multi- 

5 media content. This ninth emt)odiment may be further defined in a twelfth embodiment such that the 
method further comprises compressing each component logical file, combining all of the compressed 
logical files, packaging the compressed logical files, and compressing the packaged and compressed file 
again to generate a single story file. This seventh embodiment may be further defined in a thirteenth 
embodiment such that the selected and concatenated sequences are packaged into a single story file. 

10 This ninth embodiment may be further defined in a fourteenth embodiment such that the logical files are 
encrypted. This ninth embodiment may be further defined in a fifteenth embodiment such that the logical 
files are digitally signed. This ninth embodiment may be further defined in a sixteenth embodiment such 
that the logical files are encrypted and/or digitally signed. This first embodiment may be further defined 
in a seventeenth embodiment such that the linkage infontiation Includes direct linkage information. This 

15 first embodiment may be further defined in an eighteenth embodiment such that the linkage infonnation 
Includes indirect linkage information. This first embodiment may be further defined in a nineteenth 
embodiment such that the linkage information includes recursive indirect linkage infonnation. This ninth 
embodiment may be further defined in a twentieth embodiment such that the logical files are 
compressed. This first embodiment may be further defined In a twenty-first embodiment such that the 

20 packaging further includes perfomiing a top-level of compression. 

In a twenty-second embodiment the invention provides a system for automatically and autonomously . 
generating a customized combined data and procedural file from non-procedural flat file descriptions, the 
system comprising: retrieving a plurality of flat file fomriat content precursors from at least one storage 
location: a segmentor receiving a plurality of flat file format content precursors and segmenting the 

26 retrieved content precursors into segments comprising procedural representation sequences; a linker 
generating linkage infonmation sequences for the segments; a binder binding the segments and linkage 
information sequences; and a packager packaging the bound segments and linkage information 
sequences Into a story file. 

In a twenty-third embodiment, the invention provides a computer program product for use in 

30 conjunction with a processor in a computer system or information appliance, the computer program 
product comprising a computer readable storage medium and a computer program mechanism 
embedded therein, the computer program mechanism, comprising: a program module that directs the 
computer system or information appliance, to function In a specified manner to automatically and 
autonomously generate a customized combined data and procedural file from non-procedural flat file 

35 descriptors, the program module Including instructions for receiving a plurality of flat file fomiat content 
precursors flrom a source; segmenting the received plurality of flat file format content precursors into 
segments comprising procedural representation sequences; generating linkage information sequences 
for the segments; binding the segments and linkage information sequences; and packaging the bound 
segments and linkage information sequences into a story file. 

40 The invention provides a system, device, method, computer program, and computer program product for 
intelligently scaling message procedural/data sets to adapt the procedural/data sets to receiver attributes 
and maintain message intent. 




wo 02/10962 



PCT/USOl/23713 



181 



10 



15 



20 



25 



30 



35 



In a first embodiment of a method for scaling a data set, the method comprising steps of: 
performing a first attribute scaling of a message when preparing and before transmission of the message 
to a client device based on receiver client attributes and a priori sender knowledge of receiving client 
device and user preferences; performing a second procedural scaling of the message including executing 
capability detennlning procedures embedded within the message after message preparatbn, message 
transmission, and message receipt, that determine receiver client capability attributes and select a 
particular message expression from a plurality of message expressions and element selection available 
In the received message; and performing a third hardware abstraction layer scaling of the particular 
selected message expression to adapt the selected message expression for presentation on the client 
device. 

This first -embodiment may be further -defined \r\ a second embodiment such that the-feceiver 
client attributes are selected from the group consisting of: a message language preference, a message 

security preference, a message size constraint, connection speed, audio rendering capabilities, video 
rendering capabilities, device memory size, device memory availability, device CPU limitations, user 
natiortaiity. playback engine version or capabilities; and combinations thereof. 

This first embodiment may be further defined in a third embodiment such that the receiver 
client attributes include a communication link connection speed determined substantially during 
preparation of the message either (i) prior to transmission of the message, or (ii) after initiation of 
transmission but prior to completion of transmission of the message. This second, embodiment may be 
further defined in a fourth embodiment such that the receiver client attributes further include a 
communication link connection speed determined substantially during preparation of the message either 
(i) prior to transmission of the message, or (ii) after initiation of transmission but prior to completion of 
transmission of the message. This first embodiment may be further defined in a fifth embodiment such 
that the receiver client attributes are selected from the group consisting of: a speed attribute of a 
processor within the client device, an available memory attribute of a memory device connected to the 
processor, an audio capability attribute, a video capability attribute, and combinations thereof. This fjfth 
embodiment may be further defined in a sixth embodiment such that the video capability attribute 
includes attributes for screen size, monochrome or color display capability, number of monochrome gray 
scale levels, number of presentable colors, color palate, and combinations thereof. 

This first embodiment may be further defined in a seventh embodiment such that the 
procedural detemninations include, when an audio message expressk>n is Included within the plurality of 
message expressions, determining whether the client has specific audio presentation capabilities, and 
when the client does not have a suitable audio presentation capability, selecting a text message 
expression In place of the audio message expression. This first embodiment may be further defined In 
an eighth embodiment such that the procedural determinations include, when first message expression is 
Included within the plurality of message expressions, determining whether the client has a first message 
type presentation capability, and when the client does not have the first message type presentation 
capability, selecting an alternate message type expression in place of the first message type expression 
while still maintaining the intent of the message. This eighth embodiment may be further defined in a 
ninth embodiment such that the alternate message type is selected from a plurality of altemate message 
types for the first message type according to predetermined rules and on the client message type 
presentation capabilities. This ninth embodiment may be further defined in a tenth embodiment such 
that the predetermined selection rules include selecting a text type alternative message when a client 
does not have any of an audio message type presentation capability, a video message type presentation 
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capability, an audio-video message type presentation capability, a graphic message type presentation 
capability, or a photographic message type presentation capability. This ninth embodiment may be 
further defined in an eleventh embodiment such that the predetermined selection rules include a 
hierarchical selection preference that selects the message presentation type that provides a maximum 
5 available amount of information possible for the client device. This eleventh embodiment may be further 
defined in a twelfth embodiment such that the method further includes selecting the message 
presentation type using semantic information about the elements. This eleventh embodiment may be 
further defined in a thirteenth embodiment such that the hierarchical selection preference selects a 
message presentation type in the order of decreasing preference from highest preference to lowest 

10 preference as follows: (i) multi-nDedia including audio and motion video content; (ii) multi-media having 
audio and still graphic imagery content; (iii) motion video without audio; (iv) still graphic without audio; (v) 
audio; and. (vi) text This twelfth embodiment may be further defined in a fourteenth embodiment such 
* that the hierarchical selection preference selects a message presentation type in the order of decreasing 
preference from highest preference to lowest preference as fbllows: (f) multi-media including audio and 

15 motion video content; (ii) multi-media having audio and still graphic imagery content; (iiO motion video 
without audio; (iv) still graphic without audio; (v) audio; and, (vi) text. This ninth embodiment may be 
further defined in a fifteenth embodiment such that the predetermined selection rules include a 
hierarchical selection preference that selects the message presentation type to be a text or symbolic 
message presentation type when the client device does not support other message presentation types. 

20 This ninth embodiment may be further defined in a sixteenth embodiment such that the hierarchical rules 
are altered by a user preference. This sixteenth embodiment may be further defined in a seventeenth 
embodiment such that the user preference includes a user preference identifying a user of the client 
device as sight impaired, and providing an audio message format type in preference to video, graphic, or 
text message presentation types. 

25 This first embodiment may be further defined in an eighteenth embodiment such that the step 

of perfomiing a third hardware abstraction layer scaling of the particular selected message expression 
comprises adapting a two-dimensional graphical display device having display device characteristics to 
display a graphical data set that does not exactly match the display device characteristics. This 
eighteenth embodiment may be further defined in a nineteenth embodiment such that the graphical data 

30 set has dimensions larger than can be simultaneously displayed by the graphical display device, and the 
adapting comprises reducing the graphical data set so that all elements of the graphical data set can be 
simultaneously displayed. This eighteenth embodiment may be further defined in a twentieth embodiment 
such that the graphical data set has dimensions smaller than will fill an available display dimension, and 
the adapting comprises magnifying the graphical data set so that available elements of the graphical data 

35 set fill at least one dimension of a two-dimensional display. This eighteenth embodiment may be further 
defined in a twenty-first embodiment such that the graphical data set has dimensions larger than can be 
simultaneously displayed by the graphical display device, and the adapting comprises providing at least 
the functionality of one scroll bar so that a user of the client device may sequentially scroll through 
different regions of the graphical data set. This twenty-first embodiment may be further defined in a 

40 twenty-second embodiment such that the at least one scroll bar includes the functionality of a horizontal 
scroll bar and a vertical scroll bar. This first embodiment may be further defined in a twenty-third 
embodiment such that the step of perfonming a third hardware abstraction layer scaling of the particular 
selected message expression comprises adapting an audio playback device having audio playback 
device characteristics to playback an audio data set that does not exactly match the audio playback 
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device characteristics. This twenty-first embodiment may be further defined in a twenty-fourth 
embodiment such that the audio data set has a larger frequency range than can be reproduced by the 
audio playback device, and the adapting comprises reducing the frequency content of the audio data set 
so that the audio data set can be reproduced by the audio playback device. This first embodiment may 
5 be further defined in a twenty-fifth embodiment such that the step of performing a third hardware 
abstraction layer scaling of the particular selected message expression comprises adapting an audio 
characteristic to represent an audio data set that does not exactly match audio characteristics of the 
client device. 

This twenty-fifth embodiment may be further defined In a twenty-sixth embodiment such that 
10 the adaptation Is selected firom the group of adaptations consisting of: speeding up playback while 
reducing frequency to maintain. normal ^ound pitch characteristics; changing a mono audio characteristic 
to a stereo characteristic, changing a stereo characteristic to a mono characteristic, changing an n- 
dimensional audio characteristic to an m-dimensional sound characteristic where m and n are any 
integers, moving sound around spatially, creating three-dimensional (3D) sound or audio effects, 
15 generating particular predetermined or variable acoustic effects to simulate different sound or acoustical 
venues or environments, eliminating periods of audio silence, eliminated periods of particular 
predetermined audio characteristics, filtering and removing background noise, filtering to remove 
particular frequencies, filtering to enhance particular frequencies, speeding up audio reproduction, 
slowing down audio reproduction, adapting audio to a particular persons hearing range firequency and/or 
20 volume, blending audio or sounds, nomrializing output level for hearing impaired person, filtering to 
enhance high-frequency components for older persons, generating special versions of voice, performing 
kareoke filtering to suppress voice components of audio but retain music, and any combination thereof. 

This twenty-third embodiment may be furtiier defined in a twenty-seventh embodiment such 
the adaptation comprises performing a sample rate conversion so that a device that does not supports ail 

25 sample rates uses software and/or hardware to convert sample rate. This first embodiment may be 
further defined In a twenty-eighth embodiment such that the step of perfonning the hardware abstraction 
layer scaling comprises adapting the message expression to match the client device hardware 
characteristics. This eighteenth embodiment may be further defined in a twenty-ninth embodiment such 
that the graphical data set is a three color graphical data set and the graphical display device is a 

30 monochrome display device, and the adapting comprises transforming the three color graphical data set 
to match the number of gray scale levels of the monochrome graphical display device. 

In a thirtieth embodiment of the invention, the invention provides a method for scaling a 
procedure/data set,^the method comprising steps of; performing a first attribute scaling of a message 
when preparing and before transmission of the message to a client device based on receiver client 

35 attributes; performing a second procedural scaling of the message including executing capability 
detemnlning procedures embedded within the message after message preparation, message 
transmission, and message receipt, that determine receiver client capability attributes and select a 
particular message expression from a plurality of message expressions available in the received 
message; and perfonming a third hardware abstraction layer scaling of the particular selected message 

40 expression to adapt the selected message expression for presentation on the client device; the receiver 
client attributes are selected from the group consisting of: a message language preference; playback 
engine software version number; software playback engine capabilities; a message security preference; 
a message size constraint; a speed attribute of a processor within the client device; an available memory 
attribute of a memory device connected to the processor; an audio capability attribute; a video capability 
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attribute including video attributes for screen size, monochrome or color disptayijfeapability. a number of 
monochrome gray scale levels or a number of presentable colors and color palate; a communication link 
connection speed determined substantially during preparation of the message either (i) just before 
preparation while the communication link Is still open; (li) prior to transmission of the message, or (iiO 
after initiation of transmission but prior to completion of transntission of \!t\B message; and combinations 
thereof; and the procedural delenninations include, when first message expression Is included within the 
plurality of message expressions, determining whether the client has a first ri(iessage type presentation 
capability, and when the client does not have the first message type presentation capability, selecting an 
alternate message type expression In place of the first message type expression while still maintaining 
the intent of the message; the alternate message type is selected from a plurality of alternate message 
types for the first message type according to predetermined rules and on the client message type 
presentation capabilities; the predetemiined selection mles include a hierarchical selection preference 
that selects the message presentation type that provides a maximum available amount of information 
possible for the client device; the hierarchical selection preference selects a message presentation type 
in the order of decreasing preference from highest preference to lowest preference as follows: (i) multi- 
media including audio and motion video content; (ii) multi-media having audio and still graphic imagery 
content; (n't) motion video without audio; (iv) still graphic without audio; (v) audio; and, (vi) text. 

This thirtieth embodiment may be further defined in a thirty-first embodiment such that the 
hierarchical mles are overridden by a user preference. This thirty-first embodiment may be further 
defined in a thirty-second embodiment such that the user preference includes a user preference 
Identifying a user of the client device as sight impaired, and providing an audio message fomiat type in 
preference to video, graphic, or text message presentation types. This thirty-first embodiment may be 
further defined in a thirty-third embodiment such that for hearing impaired person audio is converted into 
text and the text is may be rendered so that the text flashes on the screen all at once, so that the text 
appears sequentially on the screen or scrolls on the screen, or so that the text is animated In some way 
to moves around the screen in some way and thereby avoid covering other text or information on the 
screen. This thirtieth embodiment may be further defined in a thirty-fourth embodiment such that the step 
of performing the hardware abstraction layer scaling comprises adapting the message expression to 
match the client device hardware characteristics. This thirtieth embodiment may be further defined in a 
thirty-fifth embodiment such that the step of perfomning a third hardware abstraction layer scaling of the 
particular selected message expression comprises adapting a two-dimensional graphical display device 
having display device characteristics to display a graphical data set that does not exactly match the 
display device characteristics. This thirty-fifth embodiment may be further defined in a thirty-sixth 
embodiment such that the graphical data set has dimensions larger than can be simultaneously 
displayed by the graphical display device, and the adapting comprises either (i) reducing the graphical 
data set so that all elements of the graphical data set can be simultaneously displayed, or (10 providing at 
least the functionality of one scroll bar so that a user of the client device may sequentially scroll through 
different regions of the graphical data set. This thirtieth embodiment may be fijrther defined in a thirty- 
seventh embodiment such that the graphical data set is a three color graphical data set and the graphical 
display device is a monochrome display device, and the adapting comprises transforming the three color 
graphical data set to match the number of gray scale levels of the monochrome graphical display device. 

In a thirty-eighth embodiment, the invention provides a method for scaling a data set, the 
method comprising steps of: performing a client attribute scaling of a message when preparing the 
message before communicating the message to a client device based on receiver client attributes; and 
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performing a procedural scaling of the message within the client device indudfng executing capability 
determining procedures embedded within the message after message preparation, message 
communication, and message receipt by the client, that determine receiver client capability attributes and 
selecting a particular message expression from a plurality of message expressions available in the 
received message. This thirty^eighth embodiment may be further defined in a thirty-ninth embodiment 
such that the method further comprising step of: perfonning a third hardware abstraction layer scaling of 
the particular selected message expression to adapt the selected message expression for presentation 
on the client device. 

In a fourtieth embodiment, the invention provides a method for optimizing content sent to a 
client device for a user that minimizes transmission bandwidth while maintaining the Intent of the content, 
Ihe xnetbod x:omprising: scaling the content (story) by the producer (composer -engine) producing Ihe 
content so that the data and procedural aspects of the content are scaled to match anticipated attributes 
of the target client device and user preferences at the time of composing the content; scaling the content 
by. the story during execution of procedural content (instructions) to match the capability of the client 
device after the content is received by the client device; and scaling the content by the hardware 
abstraction layer to match client device specific characteristics to enable playback of the content on the 



This fortieth embodiment may be further defined in a forty-first embodiment such that the 
hardware extraction layer scaling includes the steps of: comparing the hardware resources required to 
perform an action requested by the story procedure executing in the client with the hardware resources 
available in the client device; and performing a substitute action for the requested action if the available 
hardware does not permit performing the requested action. This forty-first embodiment may be further 
defined In a forty-second embodiment such that the substitute action is selected from the group of 
actions consisting of: (a) substituting an alternative content of a different content type for the requested 
content; (b) modifying the manner in which the requested content is presented to the user; (c) modifying 
the requested content so that it can be presented to the user in its modified form; and (d) combinations 
thereof. 

This forty-second embodiment may be further defined in a forty-third embodiment such that 
the content is a digital image and the digital image is too large to be displayed as a single image on the 
client device; and the substitute action is selected from the group consisting of: substituting a text 
description of the image for the image, displaying a portion of the image and providing the functionality of 
scroll bars so that the user may interactively scroll to different portions of the image viewing only a portion 
of the image at a time, decimating pixels of the image to, reduce the size of the image to fit within the 
display area of the device display, processing the image to reduce the size of the image to fit within the 
display area of the display device, substituting a smaller image, and combinations thereof. This forty- 
third embodiment may be further defined in a forty-fourth embodiment such that the content is an audio 
content and the client device does not provide audio content playback capabilities, the substitute action 
comprises substituting a text description of the audio content. This forty-third embodiment may be further 
defined in a forty-frfth embodiment such that the content is an Image or video content and the client 
device does not provide imagery or video content playback capabilities, the substitute action comprises 
substituting a text description of the Imagery or video content. This forty-third embodiment may be 
further defined in a forty-sixth embodiment such that the content is a text content and attributes of the 
client or the user indicate that the user is a blind individual and the client device provides audio output 



client device. 
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and text-to-speech conversion, the substitute action compnses performing a text-to-speech conversion of 
the text description to generate an audio content. 

In a forty-seventh embodiment, the invention provides a computer program product for use in 
conjunction with a computer system, the computer program product comprising a computer readable 
5 storage medium and a computer program mechanism embedded therein, the computer program 
mechanism, comprising: a program module that directs components of the computer system to scale a 
data set, the program module including instnictions for: performing an attribute scaling of a message 
when preparing and before transmission of the message to a client device based on receiver client 
attributes and a priori sender knowledge of receiving client device and user preferences. 

10 This forty-seventh embodiment may be further defined in a forty-eighth embodiment such that 

•the program module further includes instractions for perfonming a procedural scsrting of the message 
including executing capability determining procedures embedded within the message after message 
preparation, message transmission, and message receipt, that determine receiver client capability 
attributes and select a particular message expression from a plurality of message expressions and 

1 5 element selection available in the received message. 

In a forty-ninth embodiment, the invention provides a computer program product for use in 
conjunction with a computer system, the computer program product comprising a computer readable 
storage medium and a computer program mechanism embedded therein, the computer program 
mechanism, comprising: a program module that directs components of the computer system to scale a 

20 data set. the program module including instructions for performing a procedural scaling of a message 
including executing capability determining procedures embedded within the message after message 
preparation, message transmission, and message receipt, that determine receiver client capability 
attributes and select a particular message expression firom a plurality of message expressions and 
element selection available in the received message, 

25 In a fiftieth embodiment, the invention provides a computer program product for use in 

conjunction with a computer system, the computer program product comprising a computer readable 
storage medium and a computer program mechanism embedded therein, the computer program 
mechanism, comprising: a program module that directs components of the computer system to scale a 
data set, the program module including instructions for: perfonming a hardware abstraction layer scaling 

30 of the particular selected message expression to adapt the selected message expression for presentation 
on the client device. 

In a fifty-first embodiment, the invention provides a computer program product for use in 
conjunction with a computer system, the computer program product comprising a computer readable 
storage medium and a computer program mechanism embedded therein, the computer program 

35 mechanism, comprising: a program module that directs components of the computer system to scale a 
data set, the program module, including instructions for perfomning a client attribute scaling of a 
message when preparing the message before comimunicating the message to a client device t)ased on 
receiver client attributes; and performing a procedural scaling of the message within the client device 
including executing capability determining procedures embedded within the message after message 

40 preparation, message communication, and message receipt by the client, that determine receiver client 
capability attributes and selecting a particular message expression from a plurality of message 
expressions available in the received message. 
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In a fifty-second embodiment, the invention provides a computer program product for use In 
conjunction with a computer system, the computer program product comprising a computer readable 
storage medium and a computer program mechanism embedded therein, the computer program 
mechanism, comprising: a program module that directs components of the computer system to optimize 

5 content sent to a client device for a user that minimizes transmission bandwidth while maintaining the 
intent of the content, the program module including instructions for. scaling the content by the producer 
produdng the content so that the data and procedural aspects of the content are scaled to match 
anticipated attributes of the target client device and user preferences at the time of composing the 
content; scaling the content by the story during execution of procedural content to match the capability of 

10 the client device after the content is received by the client device; and scaling the content by the 
hardware abstraction layer to match client device specific characteristics to enable playback of the 
content on the client device. 

In a fifty-third embodiment, the invention provides a system for scaling a message data set, the 
system comprising: an attribute scaler perfonning a first attribute scaling of a message when preparing 

15 and before transmission of the message data set to a client device based on receiver client attributes and 
a priori sender knowledge of receiving client device and user preferences; a procedural scalar performing 
a second procedural scaling of the message data set including means for executing capability 
detemiining procedures embedded within the message after message preparation, message 
transmission, and message receipt, to determine receiver client capability attributes and to select a 

20 particular message expression from a plurality of message expressions and element selection available 
In the received message; and a hardware abstraction layer scalar scaling the particular selected 
message expression to adapt the selected message expression for presentation on the client device. 

This fifty-third embodiment may be further defined in a fifty-fourth embodiment such that the 
attribute scalar comprises computer program code executing within a processor and memory coupled to 

25 the processor In a general purpose computer. This fifty-third embodiment may be further defined in a fifty- 
fifth embodiment such that the procedural scalar comprises computer program code executing within a 
processor and memory coupled to the processor in a client infomiation appliance. This fifty-third 
embodiment may be further defined in a fifty-sixth embodiment such that the hardware abstraction layer 
scalar comprises computer program code executing within a processor and memory coupled to the 

30 processor In a client infonnation appliance. 

The invention provides a system, device, method, computer program, and computer program 
product for an intent preserving message adaptation and conversion system and method for 
communicating with sensory and/or physically challenged persons. 

In a further aspect of the invention, the invention provides a first embodiment of a method for 
35 communicating an idea to a user including to a sensory or physically challenged user, the method 
comprising the steps of: identifying an idea to be communicated to a user; collecting and storing a 
plurality of alternative expressions for the idea, each the alternative expression being associated with a 
different one of a plurality of possible outputs generated by a client device, each the output intended to 
stimulate a different sense of a user; composing an electronic content encompassing the idea from 
40 selected ones of the plurality of alternative expressions; communicating the electronic content to the 
client device for presentation to the user; selecting a particular output to generate from among the 
plurality of possible outputs; and executing instructions in the client device to generate the selected 
output so as to stimulate a particular one of the user senses. 
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This first embodiment may be further defined In a second embodiment such that the method 
further comprising: soliciting user input in one or more of a plurality of manners selected from the set 
consisting of: enumerating the available user input sources and selected from one of the enumerated 
input sources, from one of the enumerated inputs entering choices in words where the manner of input is 

5 a combinations of words, characters, letters, numbers, numbers, sentences, paragraphs, sets of 
paragraphs, so as to provide an Input for filling out forms. 

This first embodiment may l>e further defined in a third embodiment such that the user senses 
are selected from the group consisting of sight, hearing, touch, smell, taste, and combinations thereof. 
This first embodiment may be further defined in a fourth embodiment such that the client device possible 

10 outputs include: a display device for presenting symbols, text, graphics, and pictures or motion video 
sensible by a users eyes; an .audio x>utput .device .for presenting a sound sensible by a users-ears; a 
tactile output device sensible by a users touch at or through a skin surface; an electronic signal for 
coupling to a user skin surface mounted or internally implanted sensory transducer device adapted to 
produce a sensory experience for the user. This first embodiment may be further defined in a fifth . 

15 embodiment such that the step of selecting comprises the step of being selected by the user when the 
content is received. This first embodiment may be further defined In a sixth embodiment such that the 
step of selecting comprises the step of being selected in response to an indicator received with the 
content. This first embodiment may be further defined in a seventh embodiment such that the step of 
selecting comprises the step of being selected in response to user preferences identified prior to receipt 

20 of the content. This first embodiment may be further defined in an eighth embodiment such that the step 
of selecting comprises the step of being selected in response to client device characteristics. This eighth 
embodiment may be further defined in a ninth embodiment such that the client device characteristics are 
selected from the group consisting of: client device hardware characteristics, client device software 
device characteristics, client device firmware characteristics, client device programmatic characteristics, 

25 client device data characteristics, and combinations thereof. 

This second embodiment may be further defined in a tenth embodiment such that inputs are 
selected from the group consisting of: eye movements, direct sensing of brain signals with electrodes, 
direct sensing of neuromuscular signals, sensing of skin characteristics, and combinations thereof. 

This first embodiment may be further defined in an eleventh embodiment such that the tactile 
30 output device generates a Braille tactilely sensible indicia. This first embodiment may be further defined 
in a twelfth embodiment such that the plurality of alternative expressions for the idea includes symbolic 
expression. This first embodiment may be further defined in a thirteenth embodiment such that the 
plurality of alternative expressions for the idea includes a text expression for each content item including 
a description of all audio and graphical content. This first embodiment may be further defined in a 
35 fourteenth embodiment such that the sensory challenged user is a sight impaired user, a hearing 
impaired user, a sight and hearing impaired user. This first embodiment may be further defined In a 
fifteenth embodiment such that semantic information contained in the message is associated with the 
message and used in conjunction with the solicited user input. This first embodiment may be further 
defined in a sixteenth embodiment such that user input solicitation and enumeration is performed by 
40 moving a single button which causes the selection to be sequentially highlighted or sequentially 
articulated or tactilely Identified. This sixteenth embodiment may be further defined In a seventeenth 
embodiment such that the user input solicitation and enumeration if performed by an act selected from 
the set of acts consisting of: select from articulated text, selection from items enumerated by voice, 
button pressing, double mouse clicks, and combinations thereof. This first embodiment may be further 




wo 02/10962 PCTAJSOl/23713 

189 

defined in an eighteenth embodiment such that the enumeration comprises articulated text This first 
embodiment may be further defined in a nineteenth embodiment such that a semantic flag mechanism 
provides multi-sensor capabi lity. 

In a twentieth embodiment, the invention provides a multi-sensory electronic content package 
5 for communicating with sensory impaired users; the paclcage comprising procedural portions and data 
portions. This twentieth embodiment may be further defined In a twenty-first embodiment such that user 
input solicitation and enumeration is perfonmed from input voice commands. The first embodiment may 
be further defined in a twenty-second embodiment such that user input solidtation arrd enurneration ts 
perfomied by double clicking a mouse or button. 

10 The invention provides a system, device, method, computer program, and computer program product for 
searching and ^selecting data and control elements in message procedural/data sets for automatic and 
complete portrayal of message to maintain message Intent. 

In a first embodiment of the inventive method for Identifying infonmation belonging to one or 
more classes, the method comprising steps of: associating a semantic Identifier with each infonnation 
15 item in a data set to be distinguished from other infonnation items in the data set; and searching through 
the data set to select infonnation items having at least one particular semantic Identifier. 

This first embodiment may be further defined in a second embodiment such that the semantic 
identifier comprises a semantic flag. This second embodiment may be further defined in a third 
embodiment such that the semantic flag comprises at least one binary flag bit. This third embodiment 

20 may be further defined in a fourth embodiment such that a plurality of the semantic flags are provided to 
identify a plurality of different story information characteristics for each item. This fourth embodiment 
may be further defined In a fifth embodiment such that the plurality of different story infonnation items 
comprise a first level complete story overview information and a second level complete story overview 
infomiation. This fifth embodiment may be further defined in a sixth embodiment such that the plurality of 

25 different story Information items further comprise multiple display screen information items. This second 
embodiment may be further defined in a seventh embodiment such that each information item has an 
assodated semantic flag or set of semantic flags contained in the file with the information item, and the 
semantic flags identify the information items as being of different information items types, the information 
item types being selected from the group of information item types consisting of: contains text, contains 

30 audio, and contains video. 

This second embodiment may be further defined in an eighth embodiment such that each 
information item has an associated semantic flag contained in the file with the information item, and the 
semantic flags idenfily the infomnation items as being of different infonnation items types, the information 
item types being selected from the group of infonnation item types consisting of: contains text, contains 

35 audio, contains video, contains text backing, contains audio backing, contains video backing, information 
item is selectable, information item is visible, is selection action description, is played back as audio for 
this screen, can be omitted without losing intent of message, suitable for hearing impaired, suitable for 
visually impaired, suitable for people with disabilities of movement, describes what happens when 
selection is made, describes complete list of currently selectable items, is complete text containing the 

40 entire intent of message, is objectionable for rendering for children under 12 years of age, is 
objectionable for rendering for children under 18 years of age, is objectionable to predetermined group of 
people, is objectionable for rendering for children under 21 years of age. contains religion related content, 
contains Christian related content, contains Jewish related content, contains Muslim related content. 




wo 02/10962 



PCT/USOl/23713 



190 



10 



15- 



20 



25 



30 



35 



contains Hindi related content, contains Buddhist related content, contains Atheist related content, 
contains material objectionable to men, contains material objectionable to women, contains content 
material objectionable to an identified predetennined group of persons. 

This second embodiment may be further defined in a ninth embodiment such that the semantic 
flags are provided in association with every logical information item unit. This ninth embodiment may be 
further defined In a tenth embodiment such that the logical information item units are selected from the 
group consisting of picture, audio, text, video clip, and combinations thereof. 

In an eleventh embodiment, the invention provides a method for communicating an idea to a 
sensory or physically challenged user, the method comprising steps of: (a) identifying an idea to be 
communicated to a user; (b) collecting and storing a plurality of alternative expressions for the idea, each 
the altemative expression being associated with a different one of a plurality of possible outputs 
generated by a client device, each the output intended to stimulate a different sense of a user; (c) 
composing an electronic content encompassing the idea from selected ones.of the plurality of alternative 
expressions; (d) communicating the electronic content to the client device for presentation to the user; 
(e) selecting a particular output to generate from among the plurality of possible outputs; and (f) 
executing instructions in the client device to generate the selected output so as to stimulate a particular 
one of the user senses. 

In a twelfth embodiment, the invention provides a method for identifying and portraying 
information elements from a data set, the method comprising steps of: assigning semantic flags to 
predetermined information elements within the story data set; searching the story data set to identify the 
semantic flags within the story data set; associating the identified semantic flags with procedures for 
utilizing the information elements; and utilizing the infomnation elements in accordance with 
predetennined procedures. This twelfth embodiment may be further defined in a thirteenth embodiment 
such that the assigning, searching, associating, and utilizing enables substantially all information 
elements that can be portrayed automatically to be automatically portrayed and portrays substantially all 
of the infomnatlon that needs to be communicated to retain the intent of a message to be communicated 
by the story data set. This twelfth embodiment may be further defined in a fourteenth embodiment such 
that the information elements are selected from the group of elements consisting of navigation type 
information elements, and content type information elements. 

In a fifteenth emt>odiment, the invention provides a semantic flag method for identifying content 
items in a data set, the method characterized in that the semantic flags provide multi-information that 
identifies and enumerates content items according to their meanings and relationships to other items to 
be communicated as part of the message intent-sensor capability. 

The invention provides a system, device, method, computer program, and computer program product for 
adapting content for sensory and physically challenged persons using embedded semantic elements in a 
procedurally based message file. 

In a first embodiment of a method for communicating a message to a client device for 
interaction with a sensory or physically challenged recipient, the method comprising steps of: (i) 
identifying an idea to be communicated to the sensory or physically challenged user recipient the idea 
including a message intent which influences the content of the message; (11) collecting and storing a 
plurality of alternative expressions for the message each the alternative expression being associated with 
a different one of a plurality of possible outputs generated by a client device, at least sorrie of the outputs 
intended to stimulate a different sense of the user; (ill) composing a content information set 
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encompassing the message with the message intent from selected ones of the plurality of altemative 
expressions the message including procedural components, data components and semantic components 
identifying the context for which ones or the procedural components and data components will be 
presented to the recipient, the presentation including executing ones of the procedural components and 
5 rendering of the data components; (w) communicating the content information to the client device for 
presentation to the recipient; (v) automatically selecting a particular output to generate from among the 
plurality of possible outputs; and (vi) executing instructions in the client device to generate the selected 
output so as to stimulate a particular one of the user senses. 

This first embodiment may be further defined in a second embodiment such that the semantic 
10 components comprise semantic identifiers. This second embodiment may be further defined in a third 
embodiment such that .the.semantic.identifiers.compnse semantic.fIags. This second- embodiment -may 
be further defined in a fourth embodiment such that the semantic components comprise single binary bit 
identifiers used in association with a multi-bit semantic flag mask. This second embodiment may be 
further defined in a fifth embodiment such that the semantic components comprise multi-bit identifiers 
15 used in assodation with a multi-bit semantic flag mask. This second.embodiment may be further defined 
in a sixth embodiment such that the content Infomiation comprises a Story Mall story, and the semantic 
elements comprise semantic flags embedded within the story. This sixth embodiment may be further 
defined in a seventh embodiment such that the semantic flag elements are selected from the group of 
elements consisting of navigation type information elements, and content type information elements. 

20 This sixth embodiment may be further defined in an eighth embodiment such that the method 

further comprises steps of: (a) searching through the story by a procedure executing within a story 
playback engine within the receiving client device to identify procedural components and data 
components having one or more associated semantic flags; and (b) processing each the content 
informatton received according to the existence or non-existence of an associated semantic flag, and the 

25 type of infomiation identified by the semantic flags. This eighth embodiment may be further defined In a 
fhinth embodiment such that the semantic flags identify a navigation type, and a content type. 

This first embodiment may be further defined in a tenth embodiment such that the method 
further comprising step of: soliciting and receiving user input in one or more of a plurality of manners 
selected from the set consisting of: enumerating the available user input sources and selecting from one 
30 of the enumerated input sources, entering choices In words where the manner of input is a combinations 
of words, characters, letters, numbers, sentences, paragraphs, sets of paragraphs, articulated text, so as 
to provide an input for filling out fonns. This tenth embodiment may be further defined in an eleventh 
embodiment such that the user senses can be selected from the group of senses consisting of sight, 
hearing, touch, smell, taste and combinations thereof. 

35 This first embodiment may be further defined in a twelfth embodiment such that client device 

possible outputs can include: a display device for presenting symbols, text, graphics, and pictures 
sensible by a user's eyes; an audio output device for presenting a sound sensible by a users ears; a 
tactile output device sensible by a users touch at or through a skin surface; an electronic signal for 
coupling to a user skin surface mounted or internally implanted sensory transducing device adapted to 

40 produce a sensory experience for the user. 

This first embodiment may be further defined in a thirteenth embodiment such that the step of 
selecting a particular output to generate from among the plurality of possible outputs includes: (i) the 
selection by the user when the content is received; (ii) the selection being selected in response' to an 




wo 02/10962 PCT/USOl/23713 

192 

indicator received with the content; (iii) the selection being selected in response to user preferences 
identified prior to receipt of the content; and (iv) the selection being selected in response to client device 
characteristics. This thirteenth embodiment may be further defined in a fourteenth embodiment such that 
client device characteristics are selected from the group consisting of: client device hardware 

5 characteristics, client device software device characteristics, client device firmware characteristics, client 
device programmatic characteristics, client device data characteristics, and combinations thereof. 

This tenth embodiment may be further defined in a fifteenth embodiment such that when user 
inputs are solicited, such user inputs are be selected from the group of inputs consisting of eye 
movements, direct sensing of brain signals with electrodes, direct sensing of neuromuscular signals, 

10 sensing of skin characteristics, and combinations thereof. This twelfth embodiment may be further 
defined in a sixteenth jsmbodiment jsuch.that the :tactile output device -generates a BFaille encoded 
tactilely sensible indicia. 

This first embodiment may be further defined in a seventeenth embodiment such that the 
plurality of altemative expressions for the idea includes symbolic expression. This seventeenth 

15 embodiment may be further defined in an eighteenth embodiment such that the plurality of alternative 
expressions for the idea may also include a text expression for each content item including a description 
of all audio and graphical content. 

This first embodiment may be further defined in a nineteenth embodiment such that the 
sensory challenged user is selected from the group consisting of a sight impaired user, a hearing 

20 impaired user, a sight and a hearing impaired user. 

This tenth embodiment may be further defined in a twentieth embodiment such that the 
semantic information contained in the message can be associated with the message and used In 
conjunction with the solicited user input. This tenth embodiment may be further defined In a fwenty-firet 
embodiment such that the user input solicitation and enumeration can be performed by moving a single 

25 button to cause the selection to be sequentially highlighted or sequentially articulated or tactilely 
identified. This tenth embodiment may be further defined in a twenty-second embodiment such that the 
user Input solicftation and enumeration are pertonmed by an act selected from the set of acts consisting 
of: select from articulated text, selection from Items enumerated by voice, button pressing, double mouse 
button clicks, selection based on button press during an automated continuous sequential enumeration of 

30 the available selectable items, selection based on button presses that cause the individual enumeration 
of selectable items in an order based on which buttons are pressed and with an additional button press to 
perform the actual selection and combinations thereof. 

This first embodiment may be further defined in a twenty-first embodiment such that the 
content adaptation and scaling uses story element semantics, and provides a multi-sensory electronic 

35 content package for communicating with sensory impaired users, the package comprising procedural 
portions and data portions. This second embodiment may be further defined in a twenty-fourth 
embodiment such that there are semantic flags and text behind at least a subset of the logical elements 
of the message to be communicated. This second embodiment may be further defined In a twenty-fifth 
embodiment such that the semantic flags allow for automated procedural enumeration of the elements 

40 needed to communicate the intent of the message and user interaction methods for presentations in a 
manner conforming to the selection of a given set of flags of interest and the values that the flags of 
interest must have if each element is to included in the enumeration. 
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This second embodiment may be further defined in a twenty-sixth embodiment such that the 
semantic flags* meanings indicate one or more of the following with respect to identified content: first level 
complete story message overview, second level complete story overview, first level single screen 
overview, second level single screen overview, contains text, contains audio, contains video, contains 
5 text backing, contains audio backing, contains video backing, is selectable, is visible, selection action 
description, is played back as audio for this screen, can be omitted without losing intent of message, 
suitable for hearing impaired, suitable for visually impaired, suitable for people with disabilities of 
movement, describes what happens when selection is made, describes complete list of cun^enlly 
selectable items, is complete text containing the entire intent of message. 

10 This second embodiment may be further defined In a twenty-seventh embodiment such that 

the semantic flags* meanings indicate one or more .of the following with respect to identified intent: \s 
objectionable for rendering for children under 12 years of age. Is objectionable for rendering for children 
under 18 years of age, is objectionable for rendering for children under 21 years of age. This second 
embodiment may be further defined in a twenty-eighth embodiment such that the semantic flags' 

15 meanings indicate one or more of the following with respect to identified content: contains religion related 
content, contains Christian related content, contains Jewish related content, contains Muslim related 
content, contains Hindi related content, contains Buddhist related content, contains Atheist related 
content, contains material objectionable to men, contains material objectionable to women, and the like. 
These are merely exemplary and any other indicator for particular content type may be applied and 

20 coded. 

This second embodiment may be further defined in a twenty-ninth embodiment such that 
semantic flags from additional second group of semantic flags are added to a first group of semantic flags 
to further refine the meaning of the first group of semantic flags, the second semantic flags being 
selected from the set consisting of: as being of a certain priority, as being of a certain level, or pertaining 
25 to a certain order with respect to the other the semantic flags which may be set for an element or set of 
elements. This second embodiment may be further defined in a thirtieth embodiment such that semantic 
flags are hierarchically structured. This second embodiment may be further defined in a thirty-first 
embodiment such that semantic flags are nested. This second embodiment may be further defined in a 
thirty-second embodiment such that semantic flags are hierarchically structured and nested. 

30 This tenth embodiment may be further defined in a thirty-third embodiment such that a given 

set of semantic flags of interest are isolated and identified by the process of performing the equivalent 
logical operation of a binary logical AND operation of the set of binary flags, with a mask value identifying 
the given set of semantic flags of interest. This thirty-third embodiment may be further defined in a thirty- 
fourth embodiment such that the result of the logical AND operafion is compared to a set of required 

35 binary values to determine if the element or elements associated the semantic flags meet the criteria for 
inclusion in the enumeration of selected elements. This thirty-third embodiment may be further defined in 
a thirty-fifth embodiment such that the semantic flags meet the criteria if the result is found to be equal to 
the required binary values. This thirty-third embodiment may be further defined in a thirty-sixth 
embodiment such that the semantic flags meet the criteria if the result is found to be not equal to the 

40 required binary values. This thirly-third embodiment may be further defined in a thirty-seventh 
embodiment such that the semantic flags meet the criteria if the result is found to contain a number of set 
flag bits having predetermined relation to a reference criteria, the relation being selected from the set 
consisting of: the result being above a given threshold, the result being above or equal to a given 
threshold, the result being below a given threshold, the result being below or equal to a given threshold 
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or equal to a given number, the result being of any predetermined logical or mathematical relation to the 

reference criteria. This thirty-third embodiment may be further defined in a thirty-eighth embodiment such 
that the semantic flags can be further refined as to their respective meaning(s), the further identifying 
including the semantic flag indicating that identified content can be used on a particular device, that 
5 identified content can be used on a particular operating environment or set of operating system 
environments, that identified content can be used on particular playback engine version or versions, 
and/or that identified content can be used on or in conjunction with a particular software application. 

The invention provides a system, device, method, computer program, and computer program product for 
forward and backward content based version control for automated autonomous playback on client 
10 devices having diverse hardware and software. 

fn B first embodiment of a system for fonward and backward content based version control for 
automated autonomous playback on client devices having diverse hardware and software, the system 
procedurally assuring that message intent is preserved and substantially optimized on players both older 
and newer than the story or other content. This first embodiment may be further defined in a second 

15 embodiment such that semantic information associated with story access elements built into the story 
message are used to procedurally substantially optimize the message for the playback capabilities while 
preserving the message intent In its rendering. 

In a third embodiment, the invention provides a method for procedurally assuring that message 
intent is preserved and substantially optimized on players both older and newer than the story content; 

20 the method including providing semantic information associated with story access elements built into the 
story message that are used to procedurally substantially optimize the message for the playback 
capabilities while preserving the message intent in its rendering. 

In a fourth embodiment, the Invention provides a method for maintaining playback capability 
between message content and client device versions, the method comprising steps of: receiving a 

25 message content having a plurality of alternate presentations of the message each of which alternatives 
communicating the intent of the message, the alternative presentations including a text or symbolic 
representation that is compatible with all players; providing procedural elements within each message 
content that query characteristics of the client device to determine compatibility of the client device with 
the alternative presentations of the message; and executing the procedural elements to adapt a received 

30 message content to compatible characteristics of the client device; whereby any message content is 
playable on any version of any client device. 

This fourth embodiment may be further defined in a fifth embodiment such that the message 
content comprises a story and the client device Includes a story player. This fourth embodiment may be 
further defined in a sbcth embodiment such that the plurality of altemate presentations comprise 

35 presentations having different media richness levels. This sixth embodiment may be further defined in a 
seventh embodiment such that the different media richness levels are hierarchically organized from 
highest media richness to lowest media richness, and wherein the lowest richness level is a text, 
character, or symbol based representation. This seventh embodiment may be further defined in an 
eighth embodiment such that the text, character, or symbol based representation Is renderable by a text- 

40 to-speech conversion engine. This fourth embodiment may be further defined in* a ninth embodiment 
such that stories have procedural foundations in which instructions or commands are provided to adapt 
an old story to a new feature or version of a story player, or to adapt a new story to an old set of story 
features or earlier version of a story player. 
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' This fourth embodiment may be further defined in a tenth embodiment such that aD stories ever 
created will run in all hardware, software, and operating version environments that are ever made 
appropriate for stories. This fourth embodiment may be further defined in an eleventh embodiment such 
that the recognition that an instruction is not compatible and will not be understood is based on internal 
5 programmatic comparison between known instruction opcodes or other instruction indicators. This 
fourth embodiment may be further defined in a twelfth embodiment such that the recognition that an 
instruction is not compatible and will not be understood is based on internal programmatic comparison of 
an explicit version number identified in the received story file as compared to the version of the story 
player. This fourth embodiment may be further defined in a thirteenth embodiment such that version 

10 infomiation if provided by semantic elements within the story. This fourth embodiment may be further 
defined in a fourteenth embodiment such that each message content has a hierarchical richness 
organization where the lowest richness message or content is a text, character, or other symboiic 
message or content; each version of all players by convention supporting text, character, or other 
symbol-based message or content so that at least a text based message or content will be Interpretable 

1 5 and playable in all versions of stories and on all story players. 

This fifth embodiment may be further defined in a fifteenth emt>odiment such that by 
convention or othenwise the story player ignores any commands, instructions, or opcodes it does not 
understand and plays the text message. This fifth embodiment may be further defined in a sixteenth 
embodiment such that compatible procedures are communicated in the story files and playable within the 

20 story players. This fifth embodiment may be further defined in a seventeenth embodiment such that the 
story player recognizes the receipt of a story file that is compatible with and contains features of a newer 
version of the story player and provides the user with an opportunity to download or othenArise acquire 
the updated story player software or firmware, either prior to playing the received story file or at a later 
time. This fifth embodiment may be further defined jn an eighteenth embodiment such that each story 

25 comprises procedural components, and if the story procedurally determines that the device doesn*t have 
some capability needed to execute parts of the stoiy, then it will execute other parts that the device does 
recognize and implement. This fifth embodiment may be further defined in a nineteenth embodiment 
such that story players can be very thin or very light as a result of the intelligent selection of playback 
richness being implemented within each story itself. This fifth embodiment may be further defined in a 

30 twentieth embodiment such that a basic set of features and limited richness support is provided in a story 
player core software or fimiware having a size of from about 2 kilobytes to about 8 kilobytes Including an 
entire run-time module engine. This fifth embodiment may be further defined in a twenty-first 
embodiment such that a basic set of features and limited richness is provided in core software or 
firmware having a size of less than 100 kilobytes including an entire run-time module engine. 

35 This twelfth embodiment may be further defined In a twenty-second embodiment such that the 

method further comprises step of: determining the receiving client device content player version by a 
procedure contained in the received content. This twelfth embodiment may be fijrther defined in a 
twenty-third embodiment such that the version determination is made when the content is received. This 
twelfth embodiment may be further defined in a twentyrfourth embodiment such that the content 

40 comprises a StoryMail story. This twelfth embodiment may be further defined in a twenty-fifth 
embodiment such that the content player procedure includes a software version. This fifth embodiment 
may be further defined in a twenty-sixth embodiment such that the content player procedure Includes a 
hardware version. This twelfth embodiment may be further defined in a twenty-seventh embodiment 
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siSch that the content player procedure includes a hardware version and a software or finnware version 
and the story is compared to all the versions. 

This fifth embodiment may be further defined in a twenty-eighth embodiment such that when a 
new story file is received, a determination is made by the story procedure itself as to the player version 
number or other version indicia. This fourth embodiment may be further defined in a twenty-ninth 
embodiment such that executable procedures within the content received determine which version of 
player software, firmware, and/or hardware are present. This fourth embodiment may be further defined 
in a thirtieth embodiment such that if the version of the content player that the content is playing on is not 
right, the executable procedure itself within the content includes procedural tests and branches to branch 
to or otherwise execute different aftemative procedures wfthin the same content that are con-ect for the 
version of the content player lhat wjli.are.playJn9.lhe .recelved content This fourth embodiment may be 
further defined in a thirty-first embodiment such that the content is a story and the alternate executable 
procedures are contained within a single story. This fifth embodiment may be further defined in a thirty- 
second embodiment such that the story procedure determines the version infonnation and executes 
portions of Itself that are compatible with the player version Information. This fifth embodiment may be 
further defined in a thirty-third embodiment such that a story contains several complete message intent 
representations at different richness level representations, and the story includes Indica at the head of 
each richness level representation that are compatibility procedures that execute and determine whether 
the playback device has the capabilities to render the representation at the intended richness level. 

This thirty-third embodiment may be further defined in a thirty-fourth embodiment such that the 
compatibility procedures utilize instructions that are known to be part of a predetermined set of playback 
engines. This thirty-fourth embodiment may be further defined in a thirty-fifth embodiment such that the 
predetermined set of playback engines comprises every playback engine version ever made. This fifth 
embodiment may be further defined in a thirty-sixth embodiment such that the determination Includes 
checking for client device support of the opcodes contained in the story. This fifth embodiment may be 
further defined in a thirty-seventh embodiment such that if the playback engine and client device support 
the opcodes and other functional capabilities in the indica at the head of each richness level 
representation, executing the procedures* rich media representation procedures at the maximum richness 
supported; and if the play back engine or device does not have the functionality and capabilities needed 
to run a particular rich media representation in the story, then branching to the header procedure for the 
next lower-richness media representation. This thirty-seventh embodiment may be further defined in a 
thirty-eighth embodiment such that the detennination and/or branching may be direct or iterative. This 
thirty-eighth embodiment may be further defined in a thirty-ninth embodiment such that the direct 
detennination uses infonnation to match a richness level of the story content to the richness level 
appropriate to the player in one step. 

This thirty-seventh embodiment may be further defined In a fortieth embodiment such that the 
iterative approach progressively compares the different richness levels in the story to the richness level 
that can be rendered, starting at the highest richness level, and progressing to lower richness levels. 
This fortieth embodiment may be further defined in a forty-first embodiment such that the lowest richness 
level is displa^ng text or other character or symbolic Information. This forty-first embodiment may be 
further defined in a forty-second embodiment such that the lowest level text or other character of 
symbolic information is converted to speech using a text-to-speech conversion engine. This forty-second 
embodiment may be further defined in a forty-third embodiment such that the version indicia comprises a 
playback engine version number. 
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This fifth embodiment may be further defined in a forty-fourth embodiment such that the story is 
constmcted so that the playback engine never encounters instructions that it does not know about or 
does not understand even if newer instructions and capabilities are actually contained in parts of the 
story. This fifth embodiment may be further defined In a forty-fifth embodiment such that if the story 
5 player Is a new version, the new instructions included in the new version story are executed or othen/vise 
used so that the enhanced newer features associated with the newer version stories are accessible; but if 
the if the story player receiving the new version story is an old player, then the story procedure will detect 
this and not branch to or execute any procedures containing new instructions not supported by the old 
player. This fifth embodiment may be further defined in a forty-sbcth embodiment such that all stories can 
10 be played in all story players for all time to thereby reduce obsolescence of old players and increases 
the likelihood that the intent of a story message will be maintained substantially independent of the story 
player on which it is ultimately received and played. 

The invention provides a system, device, method, computer program, and computer program 
product for, reducing unauthorized access by procedural messages executing in a computer system to 
1 5 computer system or memory or programs or data stored therein. 

In a first embodiment of a method of maintaining anti-hacking security in a computer system, 
such as a system that executes procedural messages using native code to carry out the procedures of 
the message, the method comprising the steps of: native code carrying out the procedures of the 
message allocating, in a single operation, one contiguous memory block range having a single memory 

20 boundary position as a buffer for storage; protecting the allocated storage buffer from overflow by: 
reducing the number of operations the native code uses to carry out the procedures of the message that 
obtain memory pointers to the allocated buffer; and checking attempts to access a memory locations 
outside of the allocated single memory block range only against the single memory boundary position of 
the single buffer memory block range; so that the likelihood that a computer system hacker can create a 

25 buffer overflow and thereby obtain access to other memory ranges to gain entry or control over functions 
or data of the computer system Is reduced. 

This first embodiment may be further defined in a second embodiment such that the computer 
system includes a story player device. This first embodiment may be further defined in a third 
embodiment such that computer code to perform memory checking is uniform and compact. This first 

30 embodiment may be further defined in a fourth embodiment such that a common core of instructions 
operate on memory. This first embodiment may be further defined in a fifth embodiment such that a 
hacker attempting to produce a memory buffer stack overflow in order to introduce executable code into 
the system is substantially prevented by the single memory range allocation and checking. This first 
embodiment may be further defined in a fifth embodiment such that the computer system provides more 

35 stable operation as a resuK of the predictable memory operating environment than would be available 
with conventional memory operating environments. This first embodiment may be further defined in a 
seventh embodiment such that the message procedures Include instructions which sub-allocate all 
memory regions from the single memory block. This first embodiment may be further defined in an 
eighth embodiment such that the message procedures include instructions which can cause the single 

40 memory block to t>e destroyed and reallocated when different parts of the message are executed, 
thereby providing procedural fiexibility while avoiding the complexities normally associated with memory 
garbage collection algorithms. This eighth embodiment may be further defined in a ninth embodiment 
such that the message procedures include at least one instruction which can preserve some or all parts 
of the data stored in the single memory block in a second allocated memory block, which is itself also 
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checked to make sure accesses outside of the second allocated memory block are never made while the 
single memory block Is being reallocated. This ninth embodiment may be further defined In a tenth 
embodiment such that the second allocated memory block Is always available during execution of the 
procedural messages and accesses are checked to be contained within one of the two allocated memory 
5 blocks. 

In a first embodiment of a method of maintaining anti-hacking security in a computer system, 
such as a system that executes procedural messages using native code to canry out the procedures of 
the message^ the method comprising the steps of: native code carrying out the procedures of the 
message allocating, in a single operation, one contiguous memory block range having a single memory 

10 boundary position as a buffer for storage; protecting the allocated storage buffer from overflow by: 
reducing the number of operations the native co.de .uses to cany out Ihe^pcocedures of the ^nessage that 
obtain memory pointers to the allocated buffer; and checking attempts to access a memory locations 
outside of the allocated single memory block range only against the single memory boundary position of 
the single buffer memory block range; so that the likelihood that a computer system hacker can create a 

15 buffer overflow and thereby obtain access to other memory ranges to gain entry or control over functions 
or data of the computer system is reduced. 

In an eleventh embodiment, the invention provides a computer program and computer 
program product for use in conjunction with a computing machine and including a program module stored 
on a tangible medium, said program module including instructions for directing operating of the 

20 computing device to maintain security In a computer system that executes procedural messages using 
native code to carry out the procedures of the message, said instmctions including instructions for native 
code carrying out the procedures of the message allocating, in a single operation, one contiguous 
memory block range having a single memory boundary position as a buffer for storage; protecting the 
allocated storage buffer from overflow by: reducing the number of operations the native code uses to 

25 cany out the procedures of the message that obtain memory pointers to the allocated buffer; and 
checking attempts to access a memory locations outside of the allocated single memory block range only 
against the single memory boundary position of the single buffer memory block range; so that the 
likelihood that a computer system hacker can create a buffer overflow and thereby obtain access to other 
memory ranges to gain entry or control over functions or data of the computer system is reduced. In a 

30 twelfth embodiment, the invention provides a data stmcture implementing the above described security 
features. In a thirteenth embodiment, the invention provides an information appliance or computing 
device incorporating the inventive method. 

The invention provides a system, device, method, computer program, and computer program product for 
self-directed loading of an input buffer with procedural messages from a stream of sub-files containing 
35 sets of logical files. 

In a first embodiment of an information appliance, computer, or computing device, the invention 
provides a method for self-directed loading of a buffer from an input stream containing at least one 
procedural thread having at least one executable instruction and optionally including parameters 
associated with the executable instruction, the method comprising steps of: initializing a first story thread 
40 state to a running state; . assigning a particular input memory buffer from among a plurality of available 
memory buffers within the device to the first thread; setting the first thread input memory buffer to be 
associated with the logical file in the input stream having content ID zero (CID=0) and cunrent file number 
zero (CFN=0) so that at story playback startup the device loads from the first content portion (CID=0) of 
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CFN=0=content file number; beginning execution with the first logical file in the first sub-file with CFN=0 
and CID=0; and accessing subsequent logical files within other subfiles that have arrived at the 
infonnation appliance device or are yet to be streamed into the information appliance device, so that 
playback can begin according to predetermined criteria or preferences or instruction before all the sub- 
files and their constituent logical files have been received; the first thread starting the processing of the 
procedures and other threads comprising the rendering of the message; perfonming substantially ail 
loading of succeeding procedural and data elements of the messages by explicit procedural load 
instructions: then performing one execution of ail threads having the state of running including first 
performing one execution of the first thread having CFN=0 and CID=0; and repeating the step of 
perfonming executions of threads until all of the threads have transitioned from a running state to a non- 
running state, each non-running thread transitioning from a running state to another state; when the step 
of performing is performed the first time after initialization, opening logical file having CID=0 and CFN=0, 
and reading into a buffer a first predetemiined number of words, each the word having a predetermined 
word size; the predetemiined number of words either containing an entire story procedure or containing a 
load operation for loading any portion of the story procedure not contained in the predetermined number 
ofwonJs. 

This first embodiment may be further defined in a second embodiment such that explicit 
message procedure load Instructions are the only method of procedural and data input words of the 
message, once the Initial words of C1D=0 and CFN=0 have been loaded at startup. This first embodiment 
may be further defined in a third embodiment such that the first message thread is number 0 or any other 
predetermined number. This first embodiment may be further defined in a fourth embodiment such that 
the running state further comprising a state selected from the set consisting of a running state, a 
suspended thread state, and an uninitialized thread state. This second embodiment may be further 
defined in a fifth embodiment such that a second descendant thread is created, associated with input 
buffers and have their states set as a direct result of procedures executed on thread 0 starting with the 
initial loading of words from the logical file with CID=0 and CFN=0, This fifth embodiment may be further 
defined in a sixth embodiment such that all other threads are created, associated with input buffers and 
have their slates set as a direct result of procedures running on the descendant threads or descendants 
of these threads. This sixth embodiment may be further defined in a seventh embodiment such that any 
thread in a running state can set or reset any or all attributes of any other thread or its own attributes. 

This first embodiment may be further defined in an eighth embodiment such that the threads 
comprising StoryMail story threads. This first embodiment may be further defined in a ninth embodiment 
such that the step of performing execution is implemented with a story playback cycle function, and the 
step of repeatedly perfomiing execution is implemented by repeatedly calling the story playback cycle 
function. This first embodiment may be further defined in a tenth emt)odiment such that the first 
predetermined number of words is a fixed number of words. This tenth embodiment may be further 
defiried in an eleventh embodiment such that the fixed number of words is 32 words. This tenth 
embodiment may be further defined in a twelfth embodiment such that the fixed number of words is a 
fixed number of words between 16 words and 512 words. This tenth embodiment may be further 
defined in a thirteenth embodiment such that the predetermined word size is a 16-bit word size. This 
tenth embodiment may be further defined in a fourteenth embodiment such that the predetermined word 
size is a 32-bit word size. This tenth embodiment may be further defined in a fifteenth embodiment such 
that the predetermined word size is a 64-bit word size. This tenth embodiment may be further defined in 
a sixteenth embodiri)ent such that the predetermined word size is a 96-bit word size. This tenth 
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einbodiment may be further defined in a seventeenth embodiment such that the predetennined word size 
is a 128-bit word size. 

This first embodiment may be further defined In an eighteenth embodiment such that the 
explicit procedural load operations are implemented with a LOAD_OP instruction. This first embodiment 
may be further defined in an eighteenth embodiment such that infonnation contained in the input stream- 
is detemiinisticatly and explicitly loaded into the input buffer in response to execution of the load 
operations contained within the input stream. This first embodiment may be further defined in a twentieth 
embodiment such that the input buffer loading accomplished in predetermined fixed-length blocks. This 
first embodiment may be further defined in a twenty-first embodiment such that the load operation 
specifies a particular location in an input memory buffer to load the newly received logical file or portions 
..theceol. This .first-embodiment may be further defined in a 4wenty-second embodiment such that the 
method further comprises executing an instruction causing data in an Input buffer to be moved to another 
location before new data is placed into the input memory buffer. This first embodiment may be further 
defined in a twenty-third embodiment such that the instnjction causing data in the input buffer to be 
moved comprises a buffer data move instmction. This first embodiment may be further defined in a 
twenty-fourth embodiment such that the load operation instruction further causing data in an input buffer 
to be moved to another location before new data is placed into the Input memory buffer. This first 
embodiment may be further defined in a twenly-ftfth embodiment such that the input buffer loading 
procedural components within the logical files explicitly and detenninistically use instructions in the 
playback stream itself for directing input buffer loading. This first embodiment may be further defined In 
a twenty-sixth embodiment such that the procedural components are self-loading. This first embodiment 
may be further defined in a twenty-seventh embodiment such that the method further comprising 
constructing the input stream to ensure that each load operation instruction contained within the stream 
loads enough of the stream to that another load operation Instruction will be encountered and executed 
before any code not in the input memory buffer is needed. This first embodiment may be further defined 
in a twenty-eighth embodiment such that the method further comprising bootstrap loading a first portion 
of procedural code into the input memory buffer when starting a new story playback. This twenty-eighth 
embodiment may be further defined in a twenty-ninth embodiment such that the bootstrap loading 
comprises loading a procedure to initiate loading of the stream into the input buffer. 

In a thirtieth embodiment, the invention further provides a method for building an infonnation 
stream for self-directed loading and playback in an infonmatlon appliance; the method comprising steps 
of: constmcting a single physical or virtual file as a concatenation of a plurality of sub-files, which contain 
sets of logical files; and constructing each sub-file to include at least one procedural thread having at 
least one executable instruction and optionally Including parameters associated with the instruction. This 
thirtieth embodiment may be further defined in a thirty-first embodiment such that the information stream 
comprises a StoryMail content information stream. 

The invention.provides a system, device, method, computer program, and computer program product for 
device-neutral procedurally-based content display layout and content playback. 

In a first embodiment of the inventive procedure for layout of a display screen using rectangular 
regions, the method for procedural layout of a display screen using rectangular regions comprising steps 
of: assigning a display descriptor element of a display descriptor array buffer to each item to be rendered 
on the display; each the display descriptor element includes a display content buffer number, a screen 
rectangle, and a hotspot descriptor anay; the display content buffer number identifies the item to be 
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displayed; the screen rectangle identifies the area of the screen on which to display the Item; the hotspot 
descriptor array contains hotspot elements which each contain semantic flags, information, and buffer 
numbers which can be used to control, find or select other altemative media representations or 
informative media associated with the item; assigning a layout rectangle to layout zero or more items 
spatially with respect to each other and the layout rectangle; intelligently setting a bounding rectangle as 
Items are laid out; carrying out farther layout operations based on the bounding rectangle results of 
previous layout operations and/or based on status and branching flags set or reset while laying out the 
items; and as long as there are more items to be laid out, then repeatedly applying the set of rectangle 
based operations for each itenr) or set of items to be laid out. 

This first embodiment may be further defined in a second embodiment such that the display 
descriptor assignment js.performed.using.a .display .descriptor operation. This second embodiment -may 
be further defined in a third embodiment such that the display descriptor operation can include zero or 
more optional steps selected from the steps consisting of: the setting descriptor flags, setting the display 
item's buffer number, setting the screen rectangle, setting the hotspot array buffer number, and any 
combination or selection of a subset of these steps. This first embodiment may be further defined in a 
fourth embodiment such that the layout rectangle is defined using a set rectangle operation. This first 
embodiment may be further defined in a fifth embodiment such that the layout operation is a 
LAYOUT_OP operation. This first embodiment may be further defined In a sixth embodiment such that 
separate branching flags are set as a result of a layout operation determining that an item or set of items 
to be displayed does not fit inside the layout rectangle in any of a number of ways. This fifth 
embodiment may be further defined in a seventh embodiment such that the flags are set or reset when 
the item or items do or do not fit horizontally inside the layout rectangle. This fifth embodiment may be 
further defined in an eighth embodiment such that the flags are set or reset when the item or items to be 
laid out do or do not fit vertically when wrapped into the display rectangle. This first embodiment may be 
further defined in a ninth embodiment such that a layout operation is used to place the list of display 
descriptors inside the layout rectangle. This ninth embodiment may be further defined in a tenth 
embodiment such that laying out the item or set of items using a first horizontal center then a vertical 
center procedure. This ninth embodiment may be further defined in a eleventh embodiment such that 
laying out the item or set of items using a first vertical center then a horizontal center procedure. This 
ninth embodiment may be further defined In a twelfth embodiment such that the display descriptor 
element contains a picture buffer number. This twelfth embodiment may be further defined in a thirteenth 
embodiment such that the picture buffer number defines a picture in RGB, RGBA, YUV, YcbCr, or Y 
fomnat. This ninth embodiment may be further defined in a fourteenth embodiment such that the display 
descriptor element includes a text buffer number. 

This first embodiment may be further defined In a fifteenth embodiment such that the picture 
buffer number defines the text in ASCII, UNICODE, or multi-byte character format This first embodiment 
may be further defined in a sixteenth embodiment such that conditional jump operation Instructions are 
used to perform complex procedural layout functions, the jump operation instoictions directing 
procedures to perfomn intelligent operations according to the layout operations' results or flag settings. 
This sixteenth embodiment may be further defined in a seventeenth embodiment such that the 
conditional jump operation comprises a JUMP_OP instruction operation. 

This first embodiment may be further defined in an eighteenth embodiment such that the layout 
method is procedurally based to layout and display information on a display device. This eighteenth 
embodiment may be further defined in a nineteenth embodiment such that the information is selected 
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from the set of information items consisting of graphical Infomnation, textual infbmnation, character 
information, symbolic information. This eighteenth embodiment may be further defined in a twentieth 
embodiment such that the information includes written language in any alphabet, character set, or other 
language representation. 

5 This first embodiment may be further defined in a twenty-first embodiment such that the 

procedurally based layout and display comprising layout mode type operations, including operations 
selected from the set of operations consisting of: horizontal only, horizontal evenly spaced, vertically only, 
vertically then horizontal, centered, items spaced a fixed distance apart horizontaify, items spaced a fixed 
•distance apart vertically, and combinations thereof. This first embodiment may be further defined in a 

10 twenty>second embodiment such that the procedurally-based layout and display operations permit 
.CDOtaDt.io.be .successfully.authored.to.djsplay-in.an ^ccepteble manner without prior knowledge of the 
particular hardware characteristics of the device on which the content wilt be displayed. This first 
embodiment may be further defined in a twenty-third embodiment such that the content comprises a 
StoryMail story. This first embodiment may be further defined in a twenty-fourth embodiment such that 

15 the procedurally-based layout and display operations permit content to be more easily authored for 
display on a variety of display devices. This first embodiment may be further defined in a twenty-fifth 
embodiment such that the procedurally-based layout and display operations permit content to be 
authored in a display hardware neutral manner without regard for particular display device hardware 
and/or display device driver characteristics. This first embodiment may be further defined in a twenty- 

20 sbcth embodiment such that the procedurally-based layout and display pennitting content playback to be 
customized during its mn-time on the player. This twenty-sixth embodiment may be further defined in a 
twenty-seventh embodiment such that the customization is performed by the Hardware Abstraction Layer 
(HAL). This twenty-seventh embodiment may be further defined in a twenty-eighth embodiment such that 
the customization is performed In response to user commanded preferences. This first embodiment may 

25 be further defined in a twenty-ninth embodiment such that the procedurally-based layout and display 
pemnits content to be authored in a display hardware neutral manner even when hardware characteristics 
are known in advance of authoring the content without regard for particular display device hardware 
and/or display device driver characteristics. 

In a thirtieth embodiment, the invention further provides a method for laying out two- 
30 dimensional Hems on a display screen having fixed physical dimensions and width and height dimension 
that are logically unbounded, where at least one of the items to be displayed may require more display 
screen area that in physically available, the method comprising steps of: providing means for logically 
extending the height dimension for display of objects in a first screen direction, the first screen extended 
dimension representing a virtual screen dimension; generating on-screen or visible rectangle of physical 
35 picture elements (pixels) having width (W) and height (H); and generating a logical or layout rectangle 
allocated to a particular display task for placing spaced multiple items within the visible screen, the layout 
rectangle having the possibility of being either smaller than, larger than, or equal in dimension to the 
visible rectangle owing to the presence of the logical display extension means; specifying the layout 
rectangle with instructions that specify (i) a layout rectangle width (LW). a layout rectangle height (LH), 
40 and the location or coordinate of a comer of the layout rectangle with respect to the visual screen 
rectangle; generating layout resultant bounding rectangle having size RWxRH where RW defines the 
outside width limits of a set of laid out Items; and laying out the items using the bounding rectangles in 
combination with procedural instructions to layout, position, set layout rectangles, and define which items 
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are to contribute to the bounding rectangles used to re-layout an item or set of items, or lay out an 
additional item or set of items. 

This thirtieth embodiment may be further defined in a thirty-first embodiment such that the 
means for logically extending comprising a scroll mechanism and scroll bars. This thirtieth embodiment 
5 may be further defined in a thirty-second embodiment such that the means for logically extending 
comprising a paging mechanism. This thirtieth embodiment may be further defined in a thirty-third 
embodiment such that the comer is the upper left comer, a lower left comer, an upper right corner, a 
lower right comer, any screen reference location. 

This thirtieth embodiment may be further defined in a thirty-fourth embodiment such that any 
10 laid out items contributing to a resultant bounding rectangle may be subtracted from the resultant 
-bounding rectangle prior to iheiinat layout of additional items. This thirty-fourth enibodiment may be 
further defined in a thirty-frfth embodiment such that new items may be added to items laid out to be 
displayed in the resultant bounding rectangle in prior operations. This thirty-fourth eml>odiment may be 
further defined in a thirty-sixth embodiment such that new items may be combined with existing items In 
15 the resultant bounding rectangle according to predetermined logical or mathematical procedures. This 
thirtieth embodiment may be further defined in a thirty-seventh embodiment such that additional items are 
laid out in the resultant bounding box window using the layout operation instruction. This third 
embodiment may be further defined in a thirty-eighth embodiment such that the layout operation 
instruction comprises the LAYOUT_OP instaiction. This thirty-sixth embodiment may be further defined 
20 in a thirty-ninth embodiment such that the layout operation instruction comprises the LAYOUT_OP 
Instruction. 

This thirty-eighth embodiment may be further defined in a fortieth embodiment such that the 
method further comprising setting branching flags to indicate when the layout of an item or set of items (i) 
required a wrap to multiple vertical layers, (ii) required a wrap to muKlple horizontal layers, (ii>) goes 
25 outside the layout rectangle, or fiv) identifies another predetermined condition. This thirty-eighth 
embodiment may be further defined In a forty-first embodiment such that the branching flags including a 
"does not fit across" which is set if all the items do not fit across the screen and used procedurally to 
enable the object to be laid out for displayed in an appropriate manner given the item size and the 
available screen size or virtual dimensions. This thirty-eighth embodiment may be further defined in a 
" 30 forty-second embodiment such that the method further comprising step of using a test and branch 
operation to control layout of objects based on the branching flags. This thirty-eighth embodiment may be 
further defined in a forty-third embodiment such that the method further comprising step of using a test 
and branch operation to control layout of items based on predetermined display size and/or coordinate 
based calculation results. 

35 The invention provides a system, device, method, computer program, and computer program 

product for thin procedural multi-media player run-time engine having application program level 
cooperative multi-threading and constrained resource retry with anti-stall features. 

In a first embodiment of the content (story) playback engine (PBE). the invention provides a 
small low-overhead content playback engine comprising: a main procedure implemented in portable 
40 code, native processor code or hardware blocks that executes cooperative player engine threads in turn; 
a boot-up sequence to assign an instruction input buffer to a startup thread, loads the first procedural 
multl-nr!edia player instructions, and starts the startup thread in a running state; a instruction dispatcher 
that fetches each instruction word of a thread in sequence or as directed by branching instructions, and 
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calls a native code function or hardware block to execute each instruction word and the parameters that 
follow it in turn; a set of native code functions or hardware blocks which together carry out the functions 
of the multi-media player instruction words and parameters; and a hardware e)<:traction layer implemented 
in native code functions or hardware blocks that many the portable portions of the player engine to the 
parts that are specific to the application or device that makes use of the player. 

In a second embodiment of the content (story) playback engine (PBE), the invention provides 
a method for a thin low-overhead multi-media procedural content player engine, the method comprising 
steps of: receiving a file for playback comprising at least one sequence of fixed length words organized 
by having a plurality of instructions arranged as a linear sequence where parameters associated with a 
particular instruction immediately follow the particular instruction and wherein subsequent instructions 
follow \he parameters assodated with a preyjous .instruction; operating, by the .playback «ngine, on tiie 
sequence of instructions and parameters, the operating including: fetching the next word in the 
sequence, the word including an indicia of the function to be performed; executing the identified function; 
and when the identified function utilizes parameters, the function then: (i) fetching the parameters that 
follow the instruction; (ii) performing the instruction using the function and parameters; (iii) advancing a 
program counter past the parameters to Uie next instruction in the sequence; and. (iv) retuming a status 
code for the instruction. 

This second embodiment may be further defined in a third embodiment such tiiat tiie status 
code being selected from the set of status codes consisting of a success status code, an error status 
code, a yield status code, a informative status code, and a retry instruction status code. This second 
embodiment may be further defined in a fourth embodiment such that the instruction and parameters are 
an-anged according to the scheme Instructlonl, paramla. paramlb. .... lnstruction2. param2a. param2b, 
param2c. .... InstrutionN. paramNa paramNm. 

This second embodiment may be further defined In a fifth embodiment such that the content 
player comprises a StoryMail story player. This second embodiment may be further defined in a sixth 
embodiment such that the status code being selected from the set of status codes consisting of a 
success status code, an error status code, a yield status code, a infonnative status code, and a retry 
Instruction status; and the instruction and parameters are arranged according to the scheme Instruction 1, 
paramla. paramlb, .... lnstruction2, param2a, param2b, param2c. .... InstrutionN, paramNa. v .... 
paramNm.; and the content player comprises a StoryMail story player. This second embodiment may be 
further defined in a seventh embodiment such that tiie fixed length words being 32-bit words. This 
second embodiment may be further defined in an eightii embodiment such that the fixed length words 
being selected from the set of fixed length word sizes consisting of 8-bit words, 16-bit words, 32-bit 
words, 40-bit words, 64-bit words, 96-b*rt words, 128-bit words, 256-bit words, 512-bit words, and any 
other fixed length word or byte size. This second embodiment may be further defined in a ninth 
embodiment such that receiving a file for playback comprising at least one sequence of the fixed lengtti 
words. This second embodiment may be further defined In a tenth embodiment such that the fixed length 
words and parameters are comprised of numeric and/or symbolic values in any combination. This 
second embodiment may be further defined in an eleventh embodiment such that the instruction values 
identify individual functions within a library of functions. This eleventh embodiment may be further 
defined in a twelfth embodiment such that the instruction values identifies one or more branch 
Instructions. 
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This second embodiment may be further defined in a thirteenth embodiment such that the run- 
time module program{s) is thin. This second embodiment may be further defined in a fourteenth 
embodiment such that the run-time module program(s) is thin and implemented with fewer than about 
200 lines of program code. This second embodiment may be further defined in a fifteenth embodiment 
5 such that the content comprises a StoryMail story. 

This second embodiment may be further defined in a sixteenth embodiment such that the rurv 
time module program(s) is thin and implemented with fewer than about 100 lines of program code. This 
second embodiment may be further defined in a seventeenth embodiment such that the nin-time module 
program(s) is thin and implemented with fewer than about 60 lines of program code. This second 

10 embodiment may be further defined in an eighteenth embodiment such that the run-time module 
.program(s) .is thin.and imptemented with fewer than about 50 4ines of C language -program^de. This 
second embodiment may be further defined In a nineteenth embodiment such that the run-time module 
has a low-overhead relative to conventional run-time systems because no sophisticated parsing, 
threading, synchronization, memory allocation or garbage collection mechanisms are needed. This 

15 second embodiment may be further defined in a twentieth embodiment such that execution speed is 
increased relative to conventional methods because processor intensive functions are performed with 
native processor code as part of an op-code's implementation, and all the control and navigation are 
performed in the very compact and very compressible story language instructions. This second 
embodiment may be further defined in a twenty-first embodiment such that the method and apparatus 

20 perfomning or implementing the inventive method Is electrical power conservative because processor 
intensive functions are performed with optimized native processor code as part of an op-code*s 
implementation, and all the control and navigation are performed in the very compact and very 
compressible story language instructions. This twenty-first embodiment may be further defined in a 
twenty-second embodiment such that the processor intensive functions include inverse discrete cosine 

25 transforms (IDCTs). This twenty-first embodiment may be further defined in a twenty-third embodiment 
such that the story language code is small. This second embodiment may be further defined in a twenty- 
fourth embodiment such that the run-time module program mechanism uses a common set of small 
functions over and over again to provide the functional capabilities of larger conventional programs so 
that tasks can be run within the data and code caches of at least some processors of conventional 

30 computers and information appliances. This twenty-first embodiment may be further defined in a twenty- 
fifth embodiment such that the method is performed with fewer layers of abstraction functional modules 
and less complex algorithms. 

This second embodiment may be further defined in a twenty-sixth embodiment such that the 
method provides a run-time system that eliminates the need to implement any of the following complex 

35 algorithm types: (i) thread creation and round robin thread scheduling with thread priority systems, (11) 
native operating system or C library memory allocation functions, (iii) memory garbage collection 
functions, (iv) intenrupl system functions, (v) picture decompression algorithms, (vi) multimedia playback 
system, (vil) user controls, and (viii) video and/or audio synchronization algorithms. This second 
embodiment may be further defined in a twenty-seventh embodiment such that the size of the native 

40 code to perfonm playback of multimedia application or messages in story format is no more than firom 
about 30 kilobytes to about 300 kilobytes. This second embodiment may be further defined in a twenty- 
eighth embodiment such that the size of the native code to perform playback of multimedia application or 
messages in story fonmat is no more than about 50 kilobytes. This second embodiment may be further 
defined in a twenty-ninth embodiment such that the size of the native code to perform playback of 
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multimedia application or messages in story format is no more than about 100 kilobytes. This second 
embodiment may be further defined in a thirtieth embodiment such that the size of native code is reduced 
by a factor of about 100 as compared to conventional implementations. This second embodiment may be 
further defined in a thirty-first embodiment such that the size of native code is reduced by from by a factor 
of about 5 times to a factor of about 1000 times as compared to conventional implementations. This 
second embodiment may be further defined in a thirty-second embodiment such that the size of the 
native code to perform playback of multimedia application or messages In story fomnat Is less than 500 
kilobytes. 

This second embodiment may be further defined in a thirty-third embodiment such that the run- 
time module provides cooperative multi-threading of various visual or audio special effects. This second 
embodiment may he further .defined .In .a ihirty-fourth embodiment such that the -coopeFative multi- 
threading occurs at the level of the application program. This second embodiment may be further 
defined in a thirty-fifth embodiment such that the cooperative multi-threading procedure further includes a 
constrained resource retry procedure. This second embodiment may be further defined in a thirty-sixth 
embodiment such that the cooperative multi-threading with constrained resource retry occurs at the level 
of the application program. 

This thirty-sixth embodiment may be further defined in a thirty-seventh embodiment such that 
the multi-threaded with constrained resource retry procedure includes steps of: running sequences of 
instructions for a thread as long as the instruction functions return as status code of success, and then 
executing the sequences of instructions for the next thread for as long as the instruction functions return 
a status code of success; a yield status code being retumed for any instruction or sequence of 
instructions that takes more than a predetermined time to complete so that other threads and their 
instructions will have an opportunity to run. This thirty-seventh embodiment may be further defined in a 
thirty-eighth embodiment such that the status code is set to retry when a constrained resource blocks the 
execution of the instruction, thereby allowing other threads to run before the Instruction is retried. 

This thirty-sixth embodiment may be further defined in a thirty-ninth embodiment such that the 
resource constraint is selected from the set of constrains consisting of: time being greater than some 
predetermined value, time being less than some predetemiined value, time being equal to some 
predetermined value, a buffer being available, a buffer not being available, a variable being less than a 
predetermined value, a variable being greater than a predetermined value, a variable being equal to a 
predetermined value, a variable having any predetermined logical or arithmetic relation to a reference 
value, a hardware device being ready, a hardware device not being ready, an electronic communication 
or protocol having been completed, an electronic communication or protocol not having been completed, 
and combinations thereof. This thirty-ninth embodiment may be further defined in a fortieth embodiment 
such that the method further provides thread or media playback synchronization. 

This fortieth embodiment may be further defined in a forty-first embodiment such that the 
thread synchronization including input, video playback, audio playback, special effects of video, special 
effects of audio, or combinations thereof. This thirty-ninth embodiment may be further defined in a forty- 
second embodiment such that executing a "wait until time" type instmction that will start execution and/or 
not complete execution until a predetermined set time or set times. This forty-second embodiment may 
be further defined in a forty-third embodiment such that the wait until time instruction comprises a time 
related instmction such as a TIME_OP instruction. This forty-third emtjodiment may be further defined in 
a forty-fourth embodiment such that the set time being defined by a reference to a relative time, whether 
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or not using indirection plus post operations, to an elapsed time difference, to an absolute time reference. 
This forty-second embocliment may be further defined in a forty-fifth embodiment such that the wait until 
time type instruction returning a retry instruction status if it is not time for the instruction to be executed 
and/or to complete execution, the return of the retry instruction status code causing execution of the next 
thread to execute. This forty-fifth embodiment may be further defined in a forty-sixth embodiment such 
that each time the "wait until time" instruction containing thread starts again it will retry the same 
instruction until the set time. This forty-sixth embodiment may be further defined in a forty-seventh 
embodiment such that the set time cornprises a constrained resource. This forty-seventh embodiment 
may be further defined in a fbrth-elghth embodiment such that the constrained resource is time and the 
instruction constrained by time is retried if the time is not the set time or within some predetennined 
difference from the set time. This thirty-ninth embodiment may be further defined in a forty-ninth 
embodiment such that a memory buffer is a constrained resource and an instmction that needs a 
memory buffer will return a retry instruction status code if the needed memory buffer is not available. This 
thirty-ninth embodiment may be further defined in a fiftieth embodiment such that use of the retry 
instruction status reducing the likelihood of stalling the processor as a result of a resource not being 
available when needed. This thirty-ninth embodiment may be further defined in a fifty-first embodiment 
such that synchronization of threads is achieved using a wait for flag in a wait until time instruction, the 
wait for flag comprising a variable which Is itself an element of a memory buffer. 

The invention provides a system, device, method, computer program, and computer program 
product for streaming multimedia-rich interactive experiences over a communications channel. 

In a first embodiment of a method for streaming electronic content, the invention provides a 
method for streaming electronic content from a sender to a receiver over a communication link, the 
method comprising the steps of: forming a single virtual story file comprising substantially the complete 
electronic content of comprising: a set of logical files, each logical file including a header Indicating that 
the first logical file procedural/data content offset is 0 and that the last procedural/data element offset is 
the size of the logical file procedural/data content less one atomic element; automatically and intelligently 
reforming the single virtual story file into a plurality of sequentially arrayed subfiles, each subfile Including: 
(i) a header identifying a first subfile offset from a reference location in the single virtual file and 
containing a substantially complete story for a predetennined playback period or playback functionality; 
(11) a cun-ently executable portion with each the subfile that executes when the subfile is opened after 
receipt; and (iii) a control portion that controls loading and execution of other subfiles; ' communicating the 
single virtual file over the communication link in a data stream at a data rate commensurate with available 
bandwidth and characteristics of the communication link, the physical file being received by the receiver 
as sequential portions of the single virtual file In the form of individual subfiles; and the opening of a later 
received subfile being controlled by a previously received subfile such that each the currently executable 
.portion of each of the subfiles is executed only upon the direction of an eariier executing subfile. 

This first embodiment may be further defined in a second embodiment such that a leading and 
previously received subfile holds and controls execution of a trailing and subsequently received subfile. 
This first embodiment may be further defined In a third embodiment such that each subfile Includes a 
control portion that instructs the playback engine to search for and open and execute procedures and 
data from a preceding or trailing subfile or set of preceding or trailing subfiles. This first embodiment may 
be further defined in a fourth embodiment such that one or a number of subfiles is requested to be 
transmitted by a starting subroutine as each logical file is opened for use by the story being played. This 
first embodiment may be further defined In a fifth embodiment such that each subfile received is executed 
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until all subfiles for the single virtual file have been received and executed. This first embodiment may be 
further defined in a sixth embodiment such that there can be branching forward and baclcward to any 
number of points between sub-files because of navigation. This first embodiment may be further defined 
in a seventh embodiment such that If a trailing subfile identified by the control portion of a leading subfile 
logical file has not been received, the control portion retrying opening the trailing subfile until it is received 
so that the quality of the stream is not degraded. This first embodiment may be further defined in an 
eighth embodiment such that if a trailing subfile directed to be sent and received during the execution of 
the control or main procedural parts of a previous subfile is not yet completely received at the time control 
Is transferred to the trailing subfile, the procedure transferring control will recognize this as a resource 
constraint and automatically retry the story instruction or instructions that require the presence of the 
complete trailing subfile. This first embodiment may be further defined in a ninth embodiment such that 
the method comprises a non-real-time streaming method. This first embodiment may be further defined in 
a tenth embodiment such that the method provides a real-time streaming method. This first embodiment 
may be further defined in an eleventh embodiment such that the electronic content comprises an 
electronic coupon for a product This first embodiment may be further defined in a twelfth embodiment 
such that the electronic content comprises an electronic advertisement for an item, goods, or sen/ice. 
This first embodiment may be further defined in a thirteenth embodiment such that the electronic content 
comprises an electronic commerce content. This first embodiment may be further defined in a fourteenth 
embodiment such that the electronic content comprises an electronic catalog. This first embodiment may 
be further defined in a fifteenth embodiment such that the electronic content comprises an electronic 
greeting card. This first embodiment may be further defined in a sixteenth embodiment such that the 
electronic content comprises an electronic content selected from the group consisting of real-time 
transmission of video and audio of events and non-real time audio and video of events, real-time and 
non-real-time transmission of navigation, and combinations thereof. This first embodiment may be further 
defined in a seventeenth embodiment such that the electronic story content is larger than device can 
store at one time. 

This first embodiment may be furtheT defined in an eighteenth embodiment such that a high- 
bandwidth connection connects the sender and the receiver but memory in the receiving device is not of 
sufficient size to simultaneously store the entire story, the story being received as a plurality of subfiles as 
they are requested, sufficient memory being reserved for execution of subfiles already received, the story 
never residing in the memory of the device in its entirety at the same time. 

This first embodiment may be further defined in a nineteenth embodiment such that the system 
and method allows for forward, backward, and random access of various ones of the story subfiles as 
navigation occurs. This first embodiment may be further defined in a twmtieth embodiment such that the 
story subfiles are executed non-sequentially, and pennitting non-sequential execution of subfiles in 
response to navigational decision Inputs to the device. 

This first embodiment may be further defined in a twenty-first embodiment such that: a leading 
and previously received subfile holds and controls execution of a trailing and subsequently received 
subfile; each subfile includes a control potion that instmcts the playback engine to search for and open 
and execute procedures and data from a preceding or trailing subfile or set of preceding or trailing 
subfiles; one or a number of subfiles is requested to be transmitted by a starting subroutine as each 
logical file is opened for use by the story being played; each subfile received is executed until all subfiles 
for the single virtual file have been received and executed; there can be branching forward and backward 
to any number of points between sub-files because of navigation; if a trailing subfile identified by the 
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control portion of a leading subfile logical file has not been received, the control portion retrying opening 
the trailing subfile until it Is received so that the quality of the stream is not degraded; if a trailing subfile 
directed to be sent and received during the execution of the control or main procedural parts of a 
previous subfile Is not yet completely received at the time control is transferred to the trailing subfile, the 
procedure transfem'ng control will recognize this as a resource constraint and automatfcally retry the 
story Instruction or instructions that require the presence of the complete trailing subfile; the electronic 
content comprises an electronic content selected firom the group consisting of real-time transmission of 
video and audio of events and non-real time audio and video of events, real-time and non-real-time 
transmission of navigation, and combinations thereof. 

This twenty-first embodiment may be further defined in a twenty-second embodiment such that 
ja hlgb-:bandwidtb xx>nnectionx:onnects the^enderand .the receiver but memoiy in the receiving device is 
not of sufficient size to simultaneously store the entire story, the story being received as a plurality of 
subfiles as they are requested, sufficient memory being reserved for execution of subfiles already 
received, the story never residing in the memory of the device in its entirety at the same time. 

In a twenty-third embodiment, the Invention provides a meUiod for streaming electronic content 
over a communication link, the method comprising the steps of: communicating the single virtual file over 
the communication link in a data stream at a data rate commensurate with available bandwidth and 
characteristics of the communication jink, the virtual file being received by the receiver as sequential 
portions of the single physical file; and controlling tiie opening of a later received subfile portion of the 
physical file being by a previously received subfile portion such that a cun-entiy executable portion of 
each of the subfiles Is executed upon the direction of an earlier executing subfile. 

This twenty-third embodiment may be further defined in a twenty-fourtti embodiment such that 

the method further comprises step of forming the single physical file; and the single physical file 
comprising: a plurality of sequentially arrayed logical subfiles; a currentiy executable portion within each 
the logical subfile that executes when the logical subfile is opened after receipt; and a control portion that 
controls loading and execution of another logical subfile. 

This twenty-third embodiment may be further defined in a twenty-fifth embodiment such ttiat 
tiie method further comprises step of forming the single virtual file; and the single virtual file comprising: a 
plurality of sequentially arrayed logical subfiles, each logical subfile including a header identifying a first 
subfile offset from a reference location in the single virtual file and containing a substantially cornplete 
story for a predetenmlned playback period or playback functionality; a cunrentiy executable portion with 
each the logical subfile that executes when the logical subfile is opened after receipt; and a control 
portion that conti'olsJoading and execution of another logical subfile. 

In a twenty-sixtii embodiment, the Invention provides a computer program and computer 
program product for use in conjunction with a computer system, the computer program product 
comprising a computer readable storage medium and a computer program mechanism embedded 
therein, the computer program^mechanism, comprising: a program module that controls the streaming of 
data over a communications link, the program module including instructions for: communicating a single 
virtual file having at least one executable portion over the communication link in a data stream at a data 
rate commensurate with available bandwidth and characteristics of the communication link, the physical 
file being received by the receiver as sequenti'al portions of tiie single virtual file; control of Uie opening of 
a later received portion of the virtual file being by a previously received portion of the virtual file such that 
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a currently executable portion of each of the received portions is executed only upon the direction of an 
earlier executing received portion. 

This twenty-sixth embodiment may be further defined In a twenty-seventh embodiment such 
that the program module further including instructions for forming the single virtual file. This twenty-sixth 
5 embodiment may be further defined In a twenty-eighth embodiment such that the program module further 
includes instructions for forming the single virtual file, and wherein the single virtual file comprises: 
comprising: (i) a plurality of sequentially arrayed logical subfiles, each logical subfile including a header 
identifying a first subfile offset from a reference location in the single physical file and containing a 
substantially complete story for a predetermined playback period or playback functionality; fii) a currently 
10 executable portion with each the logical subfile that executes when the logical subfile is opened after 
receipt; .and.^ili).a control portion that controls Joading and -exeoutlon of-another logical subfile. 

In a twenty-ninth embodiment, the invention provides a system for streaming electronic content 
over a communication channel linking at least one sender and at least one receiver, the system 
comprising: a file maker within the sender for constmcting a single virtual or physical file having 

15 predefined virtual file attributes; a detector within the sender detecting at least a bandwidth characteristic 
of the communication channel; a transmitter within the sender communicating the single virtual file over 
the communication link in a data stream at a data rate commensurate with available bandwidth and 
characterisfics of the communication link, the virtual file being received by the receiver as sequential 
portions of the single subfiles; and a controller within the receiver controlling the opening of a later 

20 received subfile portion of the virtual file being by a previously received subfile portion such that a 
currentiy executable portion of each of the subfiles is executed upon the direction of an eariier executing 
subfile. 

This twenty-ninth embodiment may be. further defined in a thirtieth embodiment such that the 
file maker includes a data structure builder for forming the single physical or virtual file; and the single 
25 physical or virtual file comprising: a plurality of sequentially arrayed logical subfiles, each logical subfile 
including a header identifying a first subfile offset from a reference location in the single physical file and 
containing a substantially complete story for a predetermined playback period or playback functionality; a 
currentiy executable portion with each the logical subfile that executes when tiie logical subfile is opened 
after receipt; and a control portion that controls loading and execution of another logical subfile. 

30 The invention provides a system, device, method, computer program, and computer program 

product for cooperative application-level multi-thread execution including instiruction retry feature upon 
identifying constrained system resource. 

In a first embodiment, the Invention provides a method for cooperatively executing a plurality of 
code threads in a processo?, the method comprising steps of: (a) communicating a plurality of code 

35 threads, including a first code thread and a second code thread, to a processor for execution; (b) setting 
a program counter for execution of the first code thread; (c) allocating ownership of the processor 
exclusively to execution of the first code thread and executing the first code thread until the first code 
thread completes execution, except stopping execution of the first code thread and yielding ownership of 
the processor by the first code thread during the execution to the second code tiiread upon the 

40 occurrence of a predetermined first code thread yield condition; (d) if execution of the first code thread 
has been stopped, then storing an indication that execution of the first code thread has been stopped, 
including a program counter value for the stopped first code thread, in a storage location; (e) setting tine 
program counter for execution of the second code thread; (f) allocating ownership of the processor 
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exclusively to execution of the second code thread and executing the second code thread until the 
second code thread completes execution, except stopping execution of the second code thread and 
yielding ownership of the processor by the second code thread to any other one of the plurality of code 
threads upon the occurrence of a predetenmined second code thread yield condition; (g) reallocating 
ownership of the processor and re-executlng the first code thread according to predetermined processor 
ownership reallocation mles; (h) retrying execution of the yielded first code thread including setting the 
program counter with the stored program counter for the stopped first code thread and re-executing the 
first code thread; and (i) repeating steps (b) through (g) for each of the plurality of code threads until each 
of the plurality of code threads has been executed. 

This first embodiment may be further defined in a second embodiment such that the 
.predetermined first code thread yield condition .compxises yielding afler.a.predetermined-tlme -period -of 
processor ownership. This first embodiment may be further defined in a third embodiment such that the 
predetermined first code thread yield condition comprises yielding upon determining that a resource 
required for execution is constrained. This first embodiment may be further defined in a fourth 
embodiment such that the predetermined first code thread yield condition and the second code thread 
yield conditions are each selected from the group consisting of: (i) yielding after a predetenfnined time 
period of ownership, or (ii) yielding upon determining that a required resource is constrained, and a 
combination thereof. This first embodiment may be further defined in a fifth embodiment such that the 
cooperative execution of the plurality of instruction threads is achieved by establishing the predetermined 
time period of ownership of at least selected ones of the plurality of threads as a instruction thread 
execution parameter communicated with the instruction thread. 

In a sixth embodiment, the invention provides a method for cooperatively executing a plurality 
of code threads in a processor, the method comprising steps of: sequentially executing a plurality of 
code threads until a predetermined code thread yield condition is detected for a particular code thread; 
stopping execution of the particular code thread for which the thread yield condition was detected; 
storing an indication that execution of the particular code thread was stopped before completion in a 
memory storage location; resuming sequential execution of the plurality of code threads at the next 
sequential code thread following the particular code thread; and retrying execution of the particular code 
thread during the resumed sequential execution according to predetermined rules for preempting a next 
sequential code thread and retrying execution of the particular code thread in preference to a next 
sequential code thread. 

This sixth embodiment may be further defined in a seventh embodiment such that the step of 
retrying includes storing an indicator for the preempted next code thread and retrieving the stored 
indicator for the particular code thread. This seventh embodiment may be further defined in a'n eighth 
embodiment such that the stored indicator for the preempted next code thread comprises a program 
counter value for the preempted next code thread, and the stored indicator for the particular code thread 
comprises a program counter value for the particular code thread that was yielded. This eighth 
embodiment may be further defined in a ninth embodiment such that the method further comprising the 
step of resuming the sequential execution of code threads after the particular code thread has been 
executed by retrieving the stored program counter value for the preempted next code thread. This sixth 
embodiment may be further defined in a tenth embodiment such that the code thread yield condition 
comprises yielding after a predetermined time period of processor ownership. This sixth embodiment 
may be further defined in an eleventh embodiment such that the code thread yield condition comprises 
yielding upon determining that a resource required for execution is constrained. This sixth embodiment 
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may be further defined in a twelfth embodiment such that the predetermined first code thread yield 

condition and the second code thread yield conditions are each selected from the group consisting of: (i) 
yielding after a predetennined time period of ownership, or (ii) yielding upon detemiining that a required 
resource is constrained, and a combination thereof. 

This sixth embodiment may l>e further defined in a thirteenth embodiment such that 
cooperative execution of the plurality of instruction threads Is achieved by establishing the predetermined 
time period of ownership of at least selected ones of the plurality of threads as a instruction thread 
execution parameter communicated with the instruction thread. This sixth embodiment may be further 
defined in a fourteenth embodiment such that cooperative execution of the program instruction threads is 
achieved by detecting a resource constraint and returning a code to the instruction dispatcher to set the 
program counter to .point back Jto JtbejsamaretumedJnstructlon before yieldingtothenext-thread. 

' in a fifteenth embodiment, the Invention provides a hardware architecture neutral executable 
program structure for execution in a processor, the program structure comprising: a plurality of Instruction 
threads selected from a library of possible instruction threads; a plurality of data parameters integrated 
among at least some of the instruction threads and influencing execution of the instruction threads; and 
at least some of the selected instruction threads being adapted for cooperative execution with other of 
the instruction threads by yielding ownership of the processor upon the occurrence of a predetenmined 
condition. This fifteenth embodiment may be further defined in a sixteenth embodiment such that the 
instructions comprise operation codes representing commands executable in a processor. This fifteenth 
embodiment may be further defined in a seventeenth embodiment such that the predetermined condition 
comprises the yielding instruction yielding after a predetermined time period of ownership. This fifteenth 
embodiment may be further defined in an eighteenth embodiment such that the predetermined condition 
comprises the yielding instruction yielding upon determining that a required resource is constrained. This 
eighteenth embodiment may be further defined in a nineteenth embodiment such that the constrained 
resource is selected from the group consisting of a memory buffer, an input device, an output device, an 
input/output device, a digital audio processor, a display device, a communication link, a communication 
bus, a buffer, a data compression processor, a data decompression processor, a vertical refresh signal 
(so user does not see display screen refresh), a time limit being exceeded or not yet being exceeded, 
and combinations thereof. 

This fifteenth embodiment may be further defined in a twentieth embodiment such that the 
instruction thread is selected from the group of Instruction threads that: perform a navigation; make a 
decision; scale a data item; decompress a data item; set a parameter; use a parameter; circulate a 
parameter; generate data; generate a parameter or instruction stream; parse a data item; fomnat a data 
item; select a data item; test a data item; respond to an input; send messages; receive messages; 
receive responses to messages; request file from a server or other source; store data; perform 
calculations; perform an animation; perform signal or image processing; respond to a data or command 
from a user; send a message; request a file; request additional data in a data stream; request data and/or 
commands in a stream of data and/or commands; navigate; make a decision; scale; decompress; set, 
use, and calculate parameters; cause audio to be rendered, cause video to be rendered generate other 
data and/or procedural streams; parse, format, and select text and other media elements such as 
images, graphics, and audio; respond to Item selection by a story player user; request further files during 
streaming, format XML (or XML extensions); format text; validate user input; perform calculations, 
simulations, animations, special effects, signal processing, run-time scaling and synchronization tasks; 
and combinations thereof. 
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This twentieth embodiment may be further defined In a twenty-ftrst embodiment such that the 
data items are selected from the set of data items consisting of a digital image media data item, a digital 
audio media item, and combinations thereof. This twentieth embodiment may be further defined in a 
twenty-second embodiment such that the response to a data or command prom a user comprises 
responding to a command or data generated by a user button press firom a device incorporating the 
processor. This twentieth embodiment may be further defined in a twenty-third embodiment such that the 
requesting additional data and/or commands In a stream of data and/or commands comprises requesting 
additional ones of the instruction threads integrated with the data parameters. This fifteenth embodiment 
may be further defined In a twenty-fourth embodiment such that the cooperative execution Is under 
programmatic control. This fifteenth embodiment may be further defined in a twenty-fifth embodiment 
such that: the predetennined condition is either (i) yielding after a predetermined time period of 
ownership, or (ii) yielding upon determining that a required resource is constrained, or (ill) a combination 
of yielding after a predetermined time period of ownership, and yielding upon determining that a required 
resource is constrained. This fifteenth embodiment may be further defined In a twenty-sixth embodiment 
such that the resource being constrained comprises the resource being unavailable at the time access to 
the resource is required. This twenty-fifth embodiment may t>e further defined in a twenty-seventh 
embodiment such that the predetermined time period of ownership is established programmatically. This 
twenty-fifth embodiment may be further defined in a twenty-eighth embodiment such that a 
predetermined time period of ownership is provided as a parameter within the message. This twenty-sixth 
embodiment may be further defined in a twenty-ninth embodiment such that the operafion codes 
comprise integers and an association between the integer and an operation is identified by a table look 
.up procedure, the integers providing a compact representation of the operations. 

This fifteenth embodiment may be further defined in a thirtieth embodiment such that the 
program structure further Including an instmction thread retry attribute associated with at least some of 
the possible instruction threads, the retry attribute causing the processor to repeatedly retry to execute an 
instruction .thread that has yielded ownership of the processor either (i) after a predetermined time period 
of ownership, (ii) after running all of the active threads until each has yielded the processor, or (iii) upon 
determining that a required resource is constrained. 

This fifteenth embodiment may be further defined in a thirty-first embodiment such that: the 
instructions comprise operation codes representing commands executable in a processor; the 
predetermined condition comprises the yielding instruction yielding after a predetennined time period of 
ownership, or the yielding instruction yielding upon determining that a required resource is constrained; 
the constrained resource is selected from the group consisting of a memory, an input device, an output 
device, an input/output device, a digital audio processor, a display device, a communication link, a 
communication bus, a buffer, a data compression processor, a data decompression processor, a vertical 
refresh signal (so user does not see display screen refresh), a time limit being exceeded or not yet being 
exceeded, and combinations thereof; and the instruction thread is selected from the group of instruction 
threads tiiat: perfbmi a navigation; make a dedsion; scale a data item; decompress a data item; set a 
parameter; use a parameter; circulate a parameter, cause audio to be rendered; cause video to be 
rendered; generate data; generate a parameter or instruction stream; parse a data item; format a data 
item; select a data item; test a data item; respond to an input; send messages; receive messages; 
receive responses to messages; request file from a server or other source; store data; perform 
calculations; perfomi an animation; perform signal or Image processing; respond to a data or command 
from a user; send a message; request a file; request additional data in a data stream; request data and/or 
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commands in a stream of data and/or commands; navigate; make a decision; scale; decompress; set, 
use. and calculate parameters; generate other data and/or procedural streams; parse, format, and select 
text and ottier media elements such as images, graphics, and audio; respond to item selection by a story 
player user; request further files during streaming, format XML (or XML extensions); fonnat text; validate 
5 user input; perfomri calculations, simulations, animations, special effects, signal processing, run-time 
scaling and synchronization tasks; and combinations thereof. 

. The invention also provides embodiments of the invention including all of the above described 
methods and procedures. For example, in one embodiment, the intention provides system and method 
comprising: means for hardware architecture neutral computer program language, structure and method 

10 for execution; means for autonomous generation of customized file having procedural and data elements 
from non-procedural flat-iile.descriptors;xneansiorinteIligentIy.scaling.me^^ sets to 

adapt the procedural/data sets to receiver attributes and maintain message intent; means for an intent 
preserving message adaptation and conversion system and method for communicating with sensory 
and/or physically challenged persons; means for searching and selecting data and control elements in 

15 message procedural/data sets for automatic and complete portrayal of message to maintain message 
intent; means for adapting content for sensory and physically challenged persons using embedded 
semantic elements in a procedurally based message file; means for forward and backward content based 
version control for automated autonomous playback on client devices having diverse hardware and 
software; means for reducing unauthorized access by procedural messages executing in a computer 

20 system to computer system or memory or programs or data stored therein; means for self-directed 
loading of an input buffer with procedural messages from a stream of sub-files containing sets of logical 
files; means for device-neutral procedurally-based content display layout and content playback; means 
for thin procedural multi-media player run-time engine having application program level cooperative multi- 
threading and constrained resource retry with anti-stall features; means for streaming multimedia-rich 

25 interactive experiences over a communications channel; and means for cooperative application-level 
multi-thread execution including Instruction retry feature upon identifying constrained system resource. 

The foregoing descriptions of specific embodiments of the present invention have been 
presented for purposes of illustration and description. They are not intended to be exhaustive or to limit 
the invention to the precise forms disclosed, and obviously many modifications and variations are 
30 possible in light of the above teaching. The embodiments were chosen and described in order to best 
explain the principles of the invention and Its practical application, to thereby enable others skilled in the 
art to besX use the invention and various embodiments with various modifications as are suited to the 
particular use contemplated. It is intended that the scope of the invention be defined by the claims 
appended hereto and their equivalents. 

35 All publications, patents, and patent applications mentioned in this specification are herein 

incorporated by reference to the same extent as If each individual publication or patent application was 
specifically and individually indicated to be incorporated by reference. 
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WE CLAIM: . 

1. A hardware architecture, operating system, and network transport neutral method secure 
communications, the method comprising: 

5 an authorization procedure for authorizing any particular user the right to access a specific resource; 

a digital certificate procedure that enables at least encryption and digital signatures having lower storage 
and bandwidth requirements than conventional digital certificates; 

a security protocol implementation procedure for implementing two or more security protocols using a 
common set of data formats, algorithms, subroutines, and procedures; 

10 a secure session interaction procedure having reduced software/firmware computer code/instructions 
and reduced networl^ bandwidth than conventional secure session interaction procedures; 

a secure unidirectional messaging procedure using less software/firmware code and reduced networic 
bandwidth than conventional unidirectional messaging procedures; 

a secure certificate issuing procedure using less software/firmware code and reduced network 
1 5 bandwidth than conventional secure certificate issuing procedures; 

a secure response session procedure using less software/firmware code and reduced network 
bandwkith than conventional secure response procedures; and 

a secure unidirectionaf response messaging procedure using fess software/firmware code and reduced 
network bandwidth than conventional secure unidirectional messaging procedures. 

20 

2. A system for secure communications comprising: 

an authorization module for authorizing any particular user the right to access a specific resource; 

a digital certificate encryption module that enables at least encryption and digital signatures having 
lower storage and bandwidth requirements than conventional digital certificates; 

25 a security protocol module for Implementing two or more security protocols using a common set of data 
formats, algorithms, subroutines, and procedures; 

a secure session interaction module having reduced software/fimnware computer code/instmctions and 
reduced network bandwidth than conventional secure session interaction procedures; 

a secure unidirectional messaging module using less- software/finfnware code and reduced networic 
30 bandwidth than conventional unidirectional messaging procedures; 

a secure certificate issuing module using less software/fimnware code and reduced networi< bandwidth 
than conventional secure certificate issuing procedures; 

a secure response session module using less software/firmware code and reduced networtc bandwidth 
than conventional secure response procedures; and 

35 a secure unidirectional response messaging module using less software/firmware code and reduced 
network bandwidth than conventional secure unidirectional messaging procedures. 
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3. A computer program product for use in conjunction with a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 
5 server, to function in a specified manner to provide message communications, the message 
communications occuning in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral nianner for secure communications, the program module 
including instructions for: 

an authorization procedure for authorizing any particular user the right to access a specific resource; 

10 a digital certificate procedure that enables at least encryption and digital signatures having lower storage 
and bandwidth requirements than conventional digital certificates; 

a security protocol implementation procedure for implementing two or more security protocols using a 
common set of data formats, algorithms, subroutines, and procedures; 

a secure session interaction procedure having reduced software/firmware computer code/Instructions 
15 and reduced network bandwidth than conventional secure session Interaction procedures; 

a secure unidirectional messaging procedure using less software/firmware code and reduced network 
bandwidth than conventional unidirectional messaging procedures; 

a secure certificate issuing procedure using less software/fimnware code and reduced network 
bandwidth than conventional secure certificate issuing procedures; 

20 a secure response session procedure using less software/finnware code and reduced network 
bandwidth than conventional secure response procedures; and 

a secure unidirectional response messaging procedure using less software/firmware code and reduced 
networic bandwidth than conventional secure unidirectional messaging procedures. 



25 4. A hardware architecture, operating system, and network transport neutral method secure 
communications, the method comprising: 

an authorization procedure for authorizing any particular user the right to access a resource; 
a digital certification procedure for encryption and digital signing; 

a security protocol procedure for implementing a plurality of security protocols using a single common 

30 set of policies and parameters; 

a secure session interaction procedure; 

a secure unidirectional messaging procedure; 

a secure certificate issuing procedure; 

a secure response session procedure; and 

35 a secure unidirectional response messaging procedure; 

the procedures using less soflware/firmware/computer code and reduced network bandwidth than 
conventional procedures to accomplish analogous functi<inality. 
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5. A computer program product for use m conjunction with a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 
5 sen/er. to function In a specified manner to provide message communications, the message 
communications occuning in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for a resource owner authorizing a specific user 
the right to access a particular resource, the program module Including Instructions for. 
A. sending a resource tag to a specified user; 

10 B. receiving, back from the specified user, the resource tag sent earlier and a user credential 
Information; 

C. verifying the user credential information; 

D. comparing a first cryptographic transfomiation of a first information item to a second cryptographic 
transfonmation of a second infonnation item; and 

15 E. granting access to the particular resource only if the first cryptographic transformation of the first 
information item has a predetermined relationship with the second cryptographic transformation of the 
second infonnation items, and othenwise denying access to the partrcular resource. 



6. A hardware architecture neutral and operating system neutral and network transport neutral method 
20 for a resource owner authorizing a specific user the right to access a particular resource, the method 

comprising: 

A. sending a first information item to a spedfied user; 

B. receiving, back from the specified user, the resource tag sent earlier and a user second information 
item; 

25 C. verifying the user second infomiation item; and 

D. comparing a first cryptographic transformation of the first Information item to a second cryptographic 
transformation of the second information item; and 

E, granting access to the particular resource only if the first cryptographic transformation of the first 
information item has a predetennined relationship with the second cryptographic transfomiation of the 

30 second information Items, and othenA^lse denying access to the particular resource. 

7. The method in claim 6, wherein the particular resource comprises an e-mail message. 

8. The method in claim 6, wherein the particular resource comprises a promotional coupon. 

35 

9. The method in claim 26, wherein the particular resource comprises an information item in electronic 
form. 



40 



10. The method in claim 6, wherein the particular resource comprises a storymail story. 

1 1 . The method in claim 6, wherein the resource tag comprises a message tag or a coupon tag. 
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12. The method in datm 6, wherein the resource tag is generated as the result of a reversible 
cryptographic transformation. 

13. The method In claim 6, wherein the first information item comprises a redundancy field and the 
second infomnation item comprises a resource identifier field and the transformation comprises a 
transformation of one or more of the Redundancy Reld and the Resource Identifier Field. 

14. The method in claim 13, wherein at least one of the redundancy field and resource identifier field 
include a message number. 

15. The method in daim 6, wherein the transformation comprises a transformation of a Redundancy 
Field, a Resource Identifier Field, and other information. 

16. The method in claim 6, wherein the resource tag comprises a message tag or a coupon tag and is 
generated as the result of a reversible cryptographic transfonmation, the transfonmation comprising a 
transfomnation of at least a Redundancy Field and a Resource Identifier Field, at least one of the 
redundancy field and resource identifier field induding a message number. 

17. The method in claim 6, wherein the resource tag is sent by any one of conventional e-mail. Story 
Enabled e-mail, display on a web page, or hardcopy media. 

18. The method in claim 16. wherein the fields of a Resource Tag are based on one or more secret keys 
known to the Resource Owner. 

19. The method in claim 18, wherein the one or more secret keys known to the resource owner use one 
or a series of block encryption steps on portions of the fields in a manner that allows the transformation 
to be reversed by an entity that knows the one or more secret keys. 

20. The method In daim 19, wherein the resource tag comprises a nine-byte to sixteen-byte tag, and the 
cryptographic transformation is performed by three or more applications of eight-byte block encryption 
using a cipher. 

21 . The method in claim 20, wherein a portion of the output bits from each of the applications of eight- 
byte block encryption are exclusively OR*ed with a portion of the input bits to the next one of the 
applications of eight-block encryption, 

22. The method in claim 20, wherein the dpher is selected from the group of ciphers consisting of a 
triple-DES based cipher, a XTEA based cipher, a RC5 based cipher, and combinations thereof. 

23. The method in claim 19, wherein the resource tag has an arbitrary length and the cryptographic 
transformation is performed by a block cipher. 



24. The method in claim 23, wherein the block cipher is operating in Cipher-Block-Chaining mode. 
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25. The method in daim 24, wherein: the CIpher-Block-Chalning mode operates with an initialization 
vector, and said initialization vector has a fixed value. 

26. The method In claim 25, wherein the initialization vector has a fixed value. 

6 

27. The method in daim 25, wherein the initialization vector is applied in two passes, a first pkss in a 
first direction (from left to right) across the bytes of the fields and then a second pass in the opposite 
direction to the first pass (from right to left) across those resulting bytes, with the end result being that of 
generating resource tag bits which together form the resource tag, and wherein each resource tag bit 

10 depends strongly on bits of the input fields, so that only an entity who knows the one or more keys can 
reverse this ciyptographic transformation. 

28. The method in claim 16, wherein the Redundancy Field comprises a cryptographic hash. 

15 29. the method in claim 28, wherein the redundancy field cryptographic hash comprises SHA1 of (i) 
some or all of a User Credential, and 00 one or more parts of a Server Credentials. 

30. The method in claim 29, wherein the redundancy field cryptographic hash further comprises SHA1 of 
(iii) one or more other of the optional other input fields of the Resource Tag. 

20 

31. The method in claim 30, wherein the optional fields from the Resource Tag include the Resource 
Identifier. 

32. The method In claim 29. wherein the User's Credential includes that user's e-mail address. 

25 

33. The method in claim 29, wherein the User's Credential includes an attribute identifying a user or an 
information appliance, computer, or network interlace card address, assodated with the user. 

34. The method in claim 29, wherein the Server's Credential includes either one or both of the server's 
30 internet domain name, or the domain name assodated with the Resource Owner. 

35. The method in claim 29, wherein the User's Credential includes an attribute identifying a user, a 
user's e-mail address, or an information appliance assodated with the user or email address; and the 
Sender's Credential indudes either one or both of the sen/er's internet domain name or the domain 

35 name assodated with the Resource Owner. 



36. The method in daim 6, wherein the verification of the User's Credential is based on a challenge- 
response authentication protocol. 



40 



37. The method in claim 36, wherein the challenge-response authentication protocol is a protocol that 
proves that the User (client) communicating with the Resource Owner (server) has current access to a 
private key assodated with a public key. 
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38. The method in daim 37, wherein the private fcey comprises a RSA private key, an Elliptic Curve 
private key, or a NTRU private key. 

39. The method in claim 37 wherein the public key appears as one field of the User Credential 
5 Information. 

40. The method In claim 39, wherein the User Credential Information is digitally signed along with other 
credential information by an entity that is tnjsted by the Resource Owner. 

10 41. The method in claim 36, wherein the challenge-response protocol indicates that the User (client) 
communicating with the Resource Owner (server) has cunrent access to a secret key associated with a 
key identifier. 

42. The method in claim 41, wherein the secret key comprises a triple-DES based secret key, a XTEA 
15 based secret key, a RC5 based secret key, or a AES based secret key. 

43. The method in daim 41, wherein the key identifier appears as one field of the User Credential 
infonnation. 

20 44. The method in claim 41 , wherein the key identifier allows the server to look up the same secret key 
known to the client. 

45. The method In claim 43, wherein the key identifier allows the server to look up the same secret key 
known to the dient, and other fields in the User Credential Information are verified using a cryptographic 

25 checksum based on that same secret key. 

46. The method in claim 6, wherein the first information comprises the Resource Tag, and the second 
Infonnation Item comprises some portion or all of the User Credential Information and one or wore 
portions of the Server's or Resource Owner's Credential Information. 

30 

47. The method in daim 46, wherein the second information item optionally comprises one or more of 
the input fields to the Resource Tag. 

48. The method in claim 6, wherein the comparison comprises a logical operation. 

35 

49. The method in claim 48 wherein the comparison comprises a logical operation performed on a bit, 
byte, multi-bit, or multi-byte basts. 

50. The method In daim 6, wherein the comparison comprises an algorithm based comparison 
40 operation. 



51. The method in claim 6, wherein the comparison comprises a mathematical operation. 
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52. The method in daim 6» wherein the first infomnation comprises the Resource Tag, and the second 
infbmiation item comprises some portion or ail of the User Credential Information and one or more 
portions of the Server's or Resource Owner's Credential Information, and the comparison comprises at 
least one of a logical operation and a mathematical operation. 

53. The method in daim 6. wherein the predetermined relationship is equality. 

54. The method in claim 6, wherein the comparison comprises at least one of a logical operation and a 
mathematical operation and the predetermined relationship is equality. 

55. The method in claim 6, wherein the first information item comprises a redundancy field and the 
second information item comprises a resource identifier field; and the first cryptographic transfomnation 
comprises a process that is the reverse of the process applied to create the resource tag from its input 
fields followed by an operation that extracts the Redundancy Field. 

56. The method in claim 55, wherein the second cryptographic transformation includes substantially the 
same steps used to create the Redundancy Field based on at least one of the verified User Credential 
Information and the Server Credential Information. 

57. The method in claim 55, wherein the second cryptographic transfonnation includes substantially the 
same steps used to create the Redundancy Field based on at least one of the verified User Credential 
Information and the Server Credential InlormaHon, and one or more of the input fields to the Resource 
Tag. 

58. The method of claim 40 wherein the trusted entity comprises a Compact Certificate as explained 
eariier. or chain of Compact Certificates leading to a trusted root public key. 

59. A method for authorizing a user access a resource, the method comprising: 
sending a resource tag to the user; 

receiving the resource tag and a user credential information fi-om the user; 
verifying the user credential information; 

comparing a first cryptographic transformation of the resource tag to a second cryptographic 
transformation of some portion or all of the User Credential Information and one or more selected 
portions of the Server's or Resource Owner's Credential Information; and 

granting access to the resource only if the first cryptographic transformation of the resource tag matches 
with the second cryptographic transfonnation of the selected portion or all of the User Credential 
Information and one or more portions of the Server's or Resource Owner's Credential Infomnation, and 
othenvise denying access to the resource. 
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60. A computer program product for use in conjunction with a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
6 program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 
server, to function in a specified manner to provide message communications, the message 
communications occuning in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for representing a digital certificate, the program 
10 module including instructions for: 

A. using a common data object header in substantially all communicated data including communicated 
certificates; 

B. providing a plurality of public keys including a first public key and a second public key in a single 
certificate, each of the at least first and second public keys being associated with its own purpose; 

15 C. providing a Tag Field that functions as a discriminator of different Certificates issued to the same 
Subject; and 

D. representing a Subject Name and a Certificate Issuer Name in one fixed character set determined by 
the Version Field. 

20 61. A hardware architecture neutral and operating system neutral and network transport neutral method 
for representing a digital certificate that enables at least encryption and digital signatures using 
substantially less storage and bandwidth than conventk)nal digital certificates, the method comprising: 

A. using a common data object header in substantially all communicated data including communicated 

certificates; 

25 B. providing a plurality of public keys including a first public key and a second public key in a single 
certificate, each of the at least first and second public keys being associated with its own purpose; 

C. providing a Tag Field that functions as a discriminator of different Certificates issued to the same 
Subject; and 

D. representing a Subject Name and a Certificate Issuer Name in one fixed character set determined by 
30 the Version Field. 

62. The method in claim 61, wherein the common data object header includes a plurality of fields 
including a Type field, a Version field, and a Content-Length field. 

35 63. The method in claim 61 , wherein the purpose is selected from the group of purposes consisting of 
encrypting messages, encrypting session keys, signing messages, signing and encrypting data, and 
combinations thereof. 
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64. The method in claim 62. wherein a single byte is used to represent a type and a version for the Type 
Fiefd the Version Field; and three bytes are used to represent Content-Length in the Content-Length 
Field. 

5 . 65. The method in claim 62, wherein a first single byte is used to represent a type in the Type Field and 
a second single byte is used to represent a Version in the Version Field; and two bytes are used to 
represent Content-Length tn the Content-Length Field. 

66. The method in claim 62, wherein each the byte has a length selected from the set of byte lengths 
10 consisting of 8 bits, 10 bits. 12 bits, 16 bits, 24 bits. 32 bits. 64 bits, 96 bits, and 128 bits. 

67. The method in claim 62. wherein the Type field Is used to identify that the object Is a Certificate. 

68. The method in claim 62. wherein the version number is used to represent at least one of the 
15 following attributes: (i) Algorithm used by Certificate Issuer to sign the certificate, (ii) Algorithm to be 

J used with the Subject's first public key, (lii) Algorithm to be used the Subject's second or subsequent 
public key. (iv) Length of each public key. (v) Length of Certificate Issuer's signature, (vi) parameters for 
the algorithm, (vli) an exponent to use with RSA public key (viii) Character Set of Subject Name, and 
(ix) Character Set of Issuer Name. 

20 

69. The method in daim 63, wherein the version number is used to represent a plurality of attributes 
selected from the set of attributes consisting of: (i) Algorithm used by Certificate Issuer to sign the 
certificate, (ii) Algorithm to be used with the Subject's first public key, (i'i) Algorithm to be used the 
Subject's second or subsequent public key, (iv) Length of each public key, (v) Length of Certificate 

25 Issuer's signature, (vi) parameter(s) for an algorithm, (vii) an exponent to use with RSA public key, (viii) 
Character Set of Subject Name, and (ix) Character Set of Issuer Name. 

70. The method in daim 63, wherein the Version number is used to represent at least four attributes 
selected from the set of attributes consisting of: (i) Algorithm used by Certificate Issuer to sign the 

30 certificate, (ii) Algorithm to be used with the Subject's first public key, (lii) Algorithm to be used the 
Subject's second or subsequent public key, (iv) Length of each public key, (v) Length of Certificate 
Issuer's signature, (vi) parameter(s) for an algorithm, (vil) an exponent to use with RSA public key, (viii) 
Character Set of Subject Name, and (ix) Character Set of Issuer Name. 

35 71. The method in claim 62, wherein the plurality of public keys include at least two public keys that 
have the same size (same length) and system parameters. 

72. The method in claim 62. wherein the system parameters include an RSA Exponent or Diffie-Helman 
Generator. 



40 
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73. The method in claim 62, wherein the Tag Field is treated as an unsigned integer that is incremented 
with each Certificate issued to the Subject 

74. The method in daim 62, wherein the unsigned integer has a four byte value. 

5 

75. The method in claim 73, wherein the treatment as an unsigned integer providing a mechanism for 
identifying which of a plurality of certificates having the same Subject Name is more recent than another 
certificate having that Subject. 

10 76. The method in claim 75, wherein this treatment and mechanism replaces the validity dates found 
with X.509 or X.509-type certificates. 

77. The method in claim 62, wherein the Tag Field is treated as ASCII characters to represent the 
. expiration date of the Certificate. 

15 

78. The method in claim 77, wherein the Tag Field is treated as four ASCII characters to represent the 
expiration date of the Certificate as a two digit month number and a two digit year number. 

79. The method in claim 62, wherein the Subject Name and Certificate Issuer Name are represented as 
20 two-byte characters. 

80. The method in daim 79, wherein the two-byte characters comprise two-byte Unicode characters. 

81. The method in claim 62, wherein the Version Field is used to indicate any additional fields that are 
25 present in the certificate. 

82. A hardware architecture neutral and operating system neutral and network transport neutral method 
for representing a digital certificate that enables at least encryption and digital signatures using 
substantially less storage and bandwidth than conventional digital certificates, the method comprising the 

30 steps of: 

using a common data objed header in substantially all communicated data including communicated 
certificates; 

providing a plurality of public keys including a first public key and a second public key in a single 
certificate, each of the at least first and second public keys being associated with its own purpose; 

35 providing a Tag Field that functions as a discriminator of different Certificates issued to the same 
Subjed; and 

representing a Subject Name and a Certificate Issuer Name in one fixed charader set determined by 
the Version Field; 
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the common data object header includes a plurality of fields including a Type field, a Version field, and a 
Content-Length field; 

the purpose is selected firom the group of purposes consisting of encrypting messages, enciypttng 
session keys, signing messages, signing and encrypting data, and combinations thereof; 

. 5 at most two bytes are used to represent a type and a version for the Type Field the 

Version Field; and at most three bytes are used to represent Content-Length in the Content- 
Length Field; 

the Type field is used to identify that the object is a Certificate; 

the Version number is used to represent a plurality of attributes selected from the set 
10 of attributes consisting of: (i) Algorithm used by Certificate Issuer to sign the certificate, (if) 

Algorithm to be used with the Subject's first public key, (iii) Algorithm to be used the Subject's 
second or subsequent public key, (iv) Length of each public key, (v) Length of Certificate 
Issuer's signature, (vi) exponent to use with RSA public key, (vii) Character Set of Subject 
Name, and (vii) Issuer Name; 
15 the plurality of public keys include at least two public keys that have the same size 

and the same system parameters; 

the Tag Field is treated as an unsigned Integer that is incremented with each 
Certificate issued to the Subject; 

the treatment as an unsigned integer providing a mechanism for identifying which of a 
20 plurality of certificates having the same Subject Name is more recent than another certificate 

having that Subject; 

the Tag Field is treated as ASCII characters .to represent the expiration date of the 
Certificate; 

the two-byte characters comprise two-byte Unicode characters; and 

25 the Version Field is used to Indicate any additional fields that are present In the 

certificate. 



. 83. A method for representing a digital certificate, the method comprising: 

using a common data object header in all communicated data including communicated certificates; 
30 providing a plurality of public keys including a first public key and a second public 

key in a single certificate; 

providing a first field that functions as a discriminator of different certificates issued to 
the same subject; and 

representing a subject name and a certificate issuer name In one fixed character set 
35 detemnined by a second field. 

84. A computer program product for use in conjunction witii a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
40 module that directs the computer system and/or components thereof including at least one or the client or 
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server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for implementing a plurality of separate security 
protocols using a common set of criteria, the program module including instructions for 

5 A. defining two cryptographic primitives; and 

B. using only the two cryptographic primitives to construct the plurality of separate security protocols. 

85. A hardware architecture neutral and operating system neutral and networi( transport neutral method 
for implementing a plurality of separate security protocols using a common set of criteria, the method 

1 0 comprising the steps of: 

A. defining two cryptographic primitives; and 

B. using only the two cryptographic primitives to construct the plurality of separate security protocols. 

86. The method in claim 85, wherein the two cryptographic primithres are sued to' construct a greater 
1 5 plurality of security protocols. 

87. The method in claim 85, wherein the cryptographic primitives including formats and algorithms. 

88. The method In claim 85, wherein the cryptographic primitives consist of only formats and algorithms. 
20 ^ 

89. The method in claim 85. wherein the cryptographic primitives being for (i) Encrypted-Data, and for 
(ii) Signed-lnside-Enveloped-Data. 

90. The method in claim 89, wherein the cryptographic primitives for Encrypted-Data providing privacy 
25 and data integrity based on a secret key and a cipher algorithm. 

91. The method in claim 90. wherein the cipher algorithm being selected from the group of cipher 
algorithms consisting of triple-DES, XTEA, RC4, AES. block cipher algorithms, stream ciphers, and 
combinations thereof. 

30 

92. The method in daim 89, wherein the cryptographic primitives for SIgned-inslde-Enveloped-Data 
providing transport of a secret key from Sender to Recipient using a public key of the recipient. 



35 



93, The method in claim 92, wherein the secret key being selected from the set comprising a message 
key and a session key. 
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94. The method in daim 92, wherein the signed-inside-enveloped-data further providing data privacy 
plus integrity using the Encrypted-Data primitive and providing data authenticity using a public key digital 
signature and provides the certificate chain of the Sender. 

5 95. The method in claim 89, wherein the cryptographic primitives for Encrypted-Data providing privacy 
and data integrity based on a secret key and a cipher algorithm; and the cryptographic primitives for 
Signed-lnside-Enveloped-Data providing transport of a secret key from Sender to Recipient using a 
public key of the recipient 

10 96. The method in claim 85, wherein the security protocols are selected from the group consisting of: 0) 
secure interactive sessions, 00 secure unidirectional messaging, (ill) secure software downloading, (Iv) 
secure software upgrading, (v) secure issuing of digital certificates, and/or (vi) combinations thereof. 

97. The method in claim 85, wherein the common set of criteria are selected from the set consisting of 
15 data formats, algorithms, subroutines, procedures, and combinations thereof. 

98. The method in claim 89, wherein the cryptographic primitives for Encrypted-Data providing privacy 
and data integrity based on a secret key and a cipher algorithm. 

20 99. The method in daim 90, wherein the cipher comprise a block dpher; the primitive indudes an 
Initialization Vector for Cipher-Block-Chaining mode that is an input to the primitive and appears In the 
data format of the output; and, the primithre returns a new Initialization Vector to be used with the next 
block of Encrypted Data. 

25 1 00. The method in daim 99, wherein the secret key to the dpher is one input to this primitive. 

101. The method in claim 99, wherein the block cipher is a dpher selected from the set consisting of a 
triple-DES based cipher, and a XTEA based cipher. 

30 102. The method in claim 90, wherein the dpher comprise a stream cipher without an Initialization 
Vector, the bytes of the key are not reused, and the secret key to the dpher is one input to this primitive. 

103. The method in daim 102, wherein the stream dpher comprises a RC4 type dpher. 



35 



104. The method in daim 85, wherein the integrity of the data and associated data tamper detection, is 
provided by a cryptographic message authentication code that is based on a secret key. 
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105. The method in claim 104, wherein the secret Is equal to or derived from the key used to encrypt the 
data. 



106. The method in claim 105. the authentication code is computed by a CBC-MAC based algorithm 
5 and/or a HMAC based algorithm. 

107. The method in claim 85, wherein the primitive takes as an optional input some other data that is 
protected by the cryptographic message authentication code, but not part of the output data. 

10 1 08. The method in claim 107, wherein such other data is selected from the set of data identified as data 
In a Type Field, Version Field, Content-Length field, and combinations thereof. 

109. The method in claim 108, wherein the cryptographic primitives include primitives for Encrypted- 
Data and for SIgned-lnside-Enveloped-Data; and the Type field is transmitted first before the Encrypted- 

1 5 Data and not be part of the Encrypted-Data. 

110. The method In claim 85, wherein the using only the two primitives to construct a plurality of 
separate security protocols further comprises using fixed public keys and/or certificates when a protocol 
application does not have, does not use, or does not require public keys and/or certificates for both the 

20 Sender and the Recipient. 

111. The method in claim 110, wherein for a protocol application that does not require that the data be 
encrypted, using Signed-lnside-Enveloped-Data to provide the software signing, and using a fixed 

Recipient public key to which all receiving software knows the private key for the encryption, rather than 
25 providing a special third cryptographic primitive for signed-only data as is done in some conventional 
systems is such circumstances. 

112. The method In claim 111, wherein the protocol application includes downloading signed software. 

30 113. The method in claim 85, wherein the using only the two primitives to construct a plurality of 
separate security protocols further comprise including both signing and encryption public keys in the 
certificates used \yith this protocol so it is possible to send an encrypted message back to the Sender of a 
message. 

35 114. The method in claim 85, wherein the Signed-lnside-Enveloped-Data primitive provides all the 
security functions required for secure unidirectional messaging. 

115. The method in claim 1 14, wherein the unidirectional messaging includes electronic mail (e-mail). 
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116. The method in claim 89, wherein the Signed-lnside-Enveloped-Data primitive provides a 
component for setting up a session Icey with a new entity for which the Sender knows the Recipient's 
public Icey. 

117. The method in claim 116, wherein the Sender l^nows the recipient's public l<ey by any one of: (i) a 
plain text request of the certificate of the Recipient, (ii) by sending the Recipient a master secret from 
which the session keys are derived, or (iii) by the Sender having received the Recipient's certificate in a 
previous communication. 

118. The method in claim 89, wherein the keys for the Encrypted-Data primitive are derived from 
exchanged information. 

119. The method in claim 118, wherein the exchanged information is information exchanged either In 
the clear, or information exchanged in the Signed-lnside-Enveloped-Data primitive. 

120. The method in claim 119, wherein the infomiatlon exchanged in the clear comprises non-secure 
plain text. 

121. The method in claim 118, wherein the keys for the Encrypted-Data primitive derived from 
exchanged information provides a form of dual key determination and challenge-response authentication. 

122. The method in claim 89, wherein new secret session keys are derived from old secret keys that 
where previously agreed to by the Sender and Recipient thereby avoiding ad or a component of overhead 
of public and private key operations by just using the Encrypted-Data primitive with the appropriate keys. 

123. The method in claim 89, wherein authentication for a session key is provided by using the 
Encrypted-Data primitive with values that are produced by the cryptographic hash of some or all of the 
data transmitted before sending the authentication message. 

124. The method in claim 123, wherein ail of the prior data transmitted is included to help thwart attacks 
on cryptographic protocols. 

125. The method in claim 89, wherein, to avoid various protocol attacks, separate keys are used by the 
Sender and Recipient by deriving the keys in different ways from shared infomnation exchanged eariier In 
the protocol and/or fixed Infonmation known to the Sender and Recipient. 

126. The method in claim 96, wherein certificate issuing is authenticated by sending a Resource Tag to 
the Issuer after the session keys have been established. 
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127. The method In daim 126, wherein the fExed public and private keys are replaced with the newly 
generated keys once the client has received the Certificate keys. 

128. The method in daim 126, wherein the fixed public and private keys are replaced with the newly 
generated keys once the dient has received the Certificate keys; and the newly generated keys being 
generated either on the dient or by the Issuer. 

129. The rriBthod in daim 127, wherein the newly generated keys being generated either on the client or 
by the Issuer. 

130. The method in claim 126, wherein the fixed public and private keys are replaced with the newly 
generated keys once the dient has received the Certificate and the keys. 

131. The method in claim 126. wherein the Resource Tag comprises a Message Tag or a Coupon Tag. 

132. The method in daim 96. wherein the certificate issuing is further authenticated using fixed public 
and private keys for the dient device that wants to get a Certificate from the Issuer. 

133. The method in daim 89, wherein a Secure Response message protocol is implemented using the 
Signed-lnside-Enveloped-Data primitive with a public key of the Redpient that is included inside the 
message to which this is a response. 

134. The method in claim 133, wherein the message is a promotional message. 

135. The method in claim 133, wherein the message includes a Certificate and the Signed-lnside- 
Enveloped-Data primitive with a public key of the Recipient is inside the Certificate that is verified by the 
Sender of the Response. 

136. The method in daim 133, wherein this Secure Response message protocol is either a 
unidiredional response message or the set up portion of a bi-diredronal messaging session. 

137. The method in daim 133. wherein the Secure Response message protocol Is implemented using 
the Encrypted-Data primitive with a secret key know to the Recipient that is induded inside the message 
that was received securely. 



138. The method in daim 133, wherein the Secure Response message protocol is implemented using 
the Encrypted-Data primitive with a secret key know to the Recipient that is included inside the message 
that was received securely and the Encrypted-Data primitive containing the Response Message. 
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139. The method in claim 137. wherein this Secure Response message protocol is either a 
unidirectional response message or the set up portion of a bi-directional session. 

140. The method in claim 138, wherein this Secure Response message protocol is either a 
unidirectional response message or the set up portion of a bi-directional session. 



141. A computer program product for use In conjunction with a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 
server, to function in a specified manner to provide message communications, the message 
communications occuning in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for secure interactive communication sessions, the 
program module including instructions for: 

A. sending to a server, by a client, a first message containing a Client-Nonce; 

B. receiving the first message Including the Client-Nonce by the server; 

C. sending to the client, by the server in response to the received first message and Client-Nonce, a 
second message containing a copy of the Client-Nonce extracted from the first message, and a value in 
the form of a Server-Nonce that was chosen by the Server that is not predictable by the Client and is 
unlikely to have been previously chosen by the Server, the first message and second message having 
substantially the same content, format and cryptographic processing; 

D. exchanging third and fourth messages between the client and the sender (client to server message) 
and the server and the client (sen/er to client message) respectively, where the order that the third and 
fourth messages are sent and received Is not material; the third and fourth messages including a content 
portion that is substantially the same though not necessarily identical and having substantially the same 
format and cryptographic processing as each other and as with subsequent data transfer messages; the 
data contents portions of the third and fourth message include a cryptographic transformation of at least 
the Client-Nonce and Server-Nonce, where the cryptographic transformation is slightly different In the 
third and fourth messages; and 

E. each of the server and client examining the respective received third and fourth messages to confirm 
that they have the expected contents and thus were created by an entity that knew both the Client-Nonce 
and the Server-Nonce. 

142. A hardware architecture neutral and operating system neutral and network transport neutral 
method for secure interactive communication sessions using less software code and network bandwidth 
than conventional systems, the method comprising: 

A. sending to a server, by a client, a first message containing a Client-Nonce; 

B. receiving the first message mcHuding the Client-Nonce by the server; 
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C. sending to the client, by the sender in response to the received first message and Client-Nonce, a 
second message containing a copy of the Client-Nonce extracted from the first message, and a value in 
the form of a Server-Nonce that was. chosen by the Server that Is not predictable by the Client and Is 
unlikely to have been previously chosen by the Sen/er; the first message and second message having 

5 substantially the same content, fonnat and cryptographic processing; 

D. exchanging third and fourth messages between the client and the server (client to server message) 
and the server and the client (server to client message) respectively, where the order that the third and 
fourth messages are sent and received is not material; the third and fourth messages including a content 
portion that is substantially the same though not necessarily identical and having substantially the same 

10 format and cryptographic processing as each other and as with subsequent data transfer messages; the 
data contents portions of the third and fourth message include a cryptographic transformation of at least 
the Client-Nonce^ and Server-Nonce, where the cryptographic transformation is slightly different in the 
third and fourth messages; and 

E. each of the server and client examining the respective received third and fourth messages to confirm 
16 that they have the expected contents and thus were created by an entity that knew both the Client-Nonce 

and the Server-Nonce. 

143. The method in claim 142 further comprising after the sever and the client have examined and 
confirmed that the third and fourth messages were created by entities that knew both the Client-Nonce 

20 and the Server-Nonce; 

F. the Client and Server optionally sending subsequent data messages that have substantially the same 
fonnat and cryptographic processing as the third and fourth messages. 

144. The method in claim 142, further comprising after a last message has been communicated 
25 between the client and the server or between the server and the client; (G) terminating the session 

without a separate session termination message by closing the underiying network connection. 

145. The method in claim 143, further comprising after a last message has been communicated 
between the client and the server or between the server and the client, (G) terminating the session 

30 without a separate session tennination message by closing the underiying network connection. 

146. The method in claim 144, wherein the underlying network connection is a TCP based connection, 
by closing the TCP socket. 

35 147. The method in claim 145, wherein the underlying networi^ connection is a TCP based connection, 
by closing the TCP socket. 



40 



148. The method in claim 142, wherein the first and second message have no cryptographic processing 
when the protocol used for the messages is attempting to reuse one or more cryptographic master keys 
that were established in a previous messaging session, and the first and second messages have 
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substantially the same format, and the Server verifies the existence of a Key-ID from the first message in 
a sender cache of pairs of Key-ID and Master Key values. 

149. The method In claim 148» wherein the first and second message have a common header that 
5 includes fields for Type, Version, and Content-Length; the first message contents containing a Key-ID 

and a Client-Nonce; and the second message contents containing the same Key-ID, the same Client- 
Nonce, and a new Server-Nonce. 

150. The method in claim 148, wherein the Key-ID is a cryptographic hash of a previously set up Master 
10 Key. 

151. The method in claim 150. wherein the cryptographic hash is a MD5 based hash, a SHA-1 based 
hash, or a SHA-256 based hash. 

15 152. The method in claim 142, wherein the Client-Nonce and Server-Nonce have the same length. 

153. The method in claim 142, wherein the Client-Nonce and the Server-Nonce have a length of 8 
bytes, 10 bytes. 16 bytes, 20 bytes, 24 bytes, 32 bytes, 64 bytes. 96 bytes, or 128 bytes. 

20 154. The method in claim 142. wherein the first and second messages are cryptographically processed 
using public key operations and these messages have substantially the same fomiat and cryptographic 
processing, and the Client and Server verify the certificate chain in the received second and first 
message respectively. 

25 155. The method in claim 142, wherein the public key operation comprises an RSA operation or an RSA 
based operation. 

156. The method In claim 142, wherein: 

the first and second messages are created using a Signed-lnside-Enveloped-Data cryptographic 

30 primitive; 

the Client-Nonce is sent to the Server encrypted by the Server's public key in the field of the public key 
encryption block that is normally associated with a data encryption key or with an OAEP padding seed, 
and this Client-nonce is used as the encryption key for the Encrypted-Data primitive, and each one 
contains copy of the message Sender's certificate chain; 

35 the Server-Nonce is sent to the Client encrypted by the Client's public key in the field of the public key 
encryption block that is normally associated with a data encryption key or with an OAEP padding seed, 
and this Server-nonce is used as the encryption key for the Encrypted-Data primitive, and each one 
contains copy of the message Sender's certificate chain; and 
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transmission of the Sever-Nonce and Client-Nonce in the field normally used for a data encryption Icey 
or an OAEP padding seed enabling a single cryptographic primitive to be used for secure session setup 
and for secure unidirectional messaging and for other secure protocol applications. 

6 157. The method in claim 156, wherein the cryptographic primitives for Signed-lnside-Enveloped-Data 
provide transport of a secret key from Sender to Recipient using a public key of the recipient. 

158. The method in claim 156, wherein the single cryptographic primitive comprises a Signed-lnside- 
Enveloped-Data primitive. 

10 

159. The method in claim 142, wherein the Data earned in the first nriessage is a Client-Nonce and the 
data carried in the second message is the Server-Nonce. 

160. The method in claim 142, wherein a digitally signed portion of the second message can be pre- 
15 computed and/or reused with different messaging sessions, and so that the Server need not perfonm a 

corhputationally expense private key operation to initiate a secure session. 

161. The method in claim 142, wherein a digitally signed portion of the second message is pre- 
computed for different messaging sessions and no session specific private key operation is perfomied to 

20 initiate a secure session. 



162. The method in claim 142. wherein a digitally signed portion of the second message is reused from 
an eariier session for a subsequent messaging session and no session specific private key operation is 
performed to initiate the subsequent secure session. 

25 

163. The method in claim 142, wherein the cryptographic transformation in the third and fourth 
messages are the same. 

164. The method in claim 142, wherein the cryptographic transformation in the third and fourth 
30 messages are different by exchanging the roles of the Client-Nonce and the Server-Nonce. 

165. The method in claim 142, wherein the cryptographic transformation is a hash of the concatenation 
of the client-nonce and server-nonce values. 

35 166. The method in claim 142, wherein the hash is selected from the set consisting of MD5, SHA-1. and 
SHA-256. 
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167. The method in claim 142, wherein the cryptographic transformation Is an enciyption of one of either 
the dient-nonce value or the server-nonce value using the other nonce value as the key. 

168. The method in claim 142, wherein the cryptographic transfonr^tion encryption Is selected from the 
5 set consisting of tripIe-DES^XTEA, RC5. and AES. 

169. The method in claim 142, wherein the third and fourth messages are created using an Encrypted- 
Data cryptographic primitive, and wherein the Encrypted-Data key for the third message is different than 
the Encrypted-Data key for the fourth message, and both Encrypted-Data keys are derived from a Master 

10 Key that Is computed with the aid of one or more applications of a cryptographic hash function applied to 
at least the Client-Nonce and the Server-Nonce. 

170. The method in claim 169, wherein the Master Key is computed with the aid of one or more 
applications of a cryptographic hash function applied to the Client-Nonce and the Server-Nonce and to 

15 some or all of the information in the previously send or received messages. 

171. The method in claim 170, wherein the Master Key (MK) is computed as the concatenation of at 
least a portion of the server-nonce, a portion of the client-nonce, and a portion of the first and second 
messages. 

20 

172. The method in claim 170. wherein the Master Key (MK) is computed as a concatenation as follows: 
MK = HMAC (Server-Nonce || Client-Nonce, SHA1 (First-Message) |'| SHA1 (Second-Message)). 

173. The method in claim 169, wherein the Encrypted-Data key for the third message equals HMAC 
25 (MK, Client-Subject-Name), where a Client-Subject-Name is generated from one or more fields extracted 

from the Client's certificate. 

174. The method in daim 169, wherein the Encrypted-Data key for the fourth message equals HMAC 
(MK, Server-Subject-Name), where Server-Subject-Name Is one or more fields extracted from the 

30 Server's certificate. 

175. The method in daim 169, wherein: the Encrypted-Data key for the third message equals HMAC 
(MK, Client-Subjecl-Name), where a Client-Subject-Name is generated from one or more fields extracted 
from the Clients certificate; and the Encrypted-Data key for the fourth message equals HMAC (MK, 

35 Server-Subject-Name), where Server-Subjecl-Name is one or more fields extracted firom the Server's 
certificate. 



176.- A method for conducting secure interactive communication sessions between a server and a client, 
the method comprising: 



• 
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sending a first message containing a first token chosen by the client; 

receiving the first message including the first token by the server; 

sending a second message containing a copy of the first token extracted from the first message, and a 
second token that was chosen by the server, by the serven 

5 exchanging third and fourth messages between the client and the server, the third and fourth messages 
including a content portion having substantially the same fomnat and cryptographic processing as each 
other, the contents portions of the third and fourth messages including a cryptographic transfonnation of 
at least the first token and second token; and 

each of the server and client examining the respective received third and fourth messages to confirm 
1 0 that they were created by an entity that knew both the first token and the second token. 

177. The method in daim 176. wherein the cryptographic transformation Is slightly different In the third 
and fourth messages. ' 

15 178. The method in daim 176. wherein the first token comprises a dient-nonce and the second token 
comprises a server-nonce. 

179, A computer program product for use in conjunction with a computer system having a server and a 
client, the computer prograpi product comprising a computer readable storage medium and a computer 

20 program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof induding at least one of the client or 
server, to function in a specified manner to condud secure interactive communication sessions between 
a server and a client, the communications occumng in a computer system hardware architecture neutral 
and operating system neutral and network transport protocol neutral manner for secure interadive 

25 communication sessions, the program module Including instructions for: 

sending a first message containing a first token chosen by the client; 
receiving the first message including the first token by the server; 

sending a second message containing a copy of the first token extraded from the first message, and a 
second token that was chosen by the server, by the server; 

30 exchanging third and fourth messages between the client and the server, the third and fourth messages 

including a content portion having substantially the same format and cryptographic processing as each 
other, the contents portions of the third and fourth messages including a cryptographic transformation of 
at least the first token and second token; and 

each of the server and client examining the respedive received third and fourth messages to confirm 
35 that they were created by an entity that knew both the first token and the second token. 



180. The computer program in claim 179, wherein the cryptographic transformation is slightly different In 
the third and fourth messages. 
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181. A computer program product for use in conjuncbon with a computer system having a server and a 
client the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 

5 module that directs the computer system and/or components thereof including at least one or the client or 
server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for secure unidirectional messaging, the program 
module including instructions for. 

10 A. extracting, by the sender, an appropriate public key and matching destination address of a Recipient 
from a storage means that is trusted and has been verified; 

B. extracting, by the sender, the sender's own private signing key and certificate chain from a trusted 
storage means; 

C. passing, by the sender, that extracted public key and matching destination address and private 
15 signing key and certificate chain infonmation, and the data of the message along with the Recipient's 

public enveloping key, and a fresh random data encryption key and firesh random OAEP padding seed to 
the Signed-lnside-Enveloped-Data cryptographic primitive to constmct a secure unidirectional message; 

D. sending, by the sender, the constructed secure unidirectional message; 

E. receiving, by the Recipient, the message; 

20 F. extracting, by the Recipient, its own private key from a secure storage means and decrypting the 

public key encryption; . 

G. extracting, by the Recipient, the data encryption key, and decrypting the data which is digitally 
signed; and 

H. verifying the signature of the data and the certificate chain of the Sender; 

25 I. wherein this is done using the same cryptographic primitive that is the same as the cryptographic 
primitive used with at least a secure session protocol. 

182. A hardware architecture neutral and operating system neutiBl and network transport neutral 
method for secure unidirectional messaging using less software code and network bandwidth than 

30 conventional systems, the method comprising: 

A. extracting, by the sender, an appropriate public key and matching destination address of a Recipient 
from a storage means that is trusted and has been verified; 

B. extracting, by the sender, the sender's own private signing key and certificate chain firom a trusted 
storage means; 

35 C. passing, by the sender, that extracted public key and matching destination address and private 
signing key and certificate chain infonnation, and the data of the message along with the Recipient's 
public enveloping key, and a fresh random data encryption key and fresh random OAEP padding seed to 
the Signed-lnside-Enveloped-Data cryptographic primitive to construct a secure unidirectional message; 

D. sending, by the sender, the constructed secure unidirectional message; 

40 E. receiving, by the Recipient, the message; 
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F. extracting, by the Recipient, its own private key from a secure storage means and decrypting the 
public key encryption; 

G. extracting, by the Recipient, the data encryption Icey, and decrypting the data which is digitally 
signed; and 

5 H. verifying the signature of the data and the certificate chain of the Sender; 

I. wherein this is done using the same cryptographic primitive that is the same as the cryptographic 
primitive used with at feast a secure session protocol. 

183. The method in Claim 182. wherein the appropriate public key comprises an RSA based public key. 

10 

184. The method in Claim 182. wherein the matching destination address is selected from the set 
consisting of an e-mail address and a URL. 

185. The method in Claim 182, wherein the storage means is trusted and has been previously verified 
1 5 using a digital signature or cryptographic checksum. 

186. The method In Claim 182. wherein the digital signature provides verification with a trusted public 
key. 

20 187. The method In Claim 182, wherein the cryptographic checksum provides verification with a trusted 
key derived from a Master Key. a Session Key. or a Message Key. 

188. The method in Claim 182, wherein the storage means is selected from the group consisting of a 
Compact Certificate, a chain of Compact Certificates leading to a trusted root public key, or combinations 

25 thereof. 

189. The method in Claim 182, wherein the storage means is a previously received Storymaii story 
enabled message that was securely received and verified by mechanisms that are trusted for that kind of 
message. 

30 

190. The method in Claim 182, wherein the storage means is any conventional e-mail message or web 
page which the Sender trusts that has been copied into the Sender's messaging platfomn memory via 
mechanisms that the Sender trusts. 



35 



191. The method in Claim 190. wherein the messaging platform is a messaging platfonn selected from 
the set consisting of: a computer, a sender, a PDA, a telephone, an appliance, an information appliance, a 
pager, or any other device supporting such messaging. 
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192. The method in Claim 182, wherein the OAEP padding seed and the data encryption key are 
different values. 

193. The method in Claim 182, wherein the OAEP padding seed and the data encryption key are the 
5 same value to avoid the overhead of generating multiple random values. 

194. The method in Claim 182, wherein the Sender's private key and certificate chain comprise fixed 
values shared among a plurality of Senders. 

10 195. The method In Claim 182, wherein the Sender's private key and certificate chain fixed values are 
widely known. 

196. The method in Claim 182, wherein the Sender's private key and certificate chain fixed values are 
not widely known and the Sender's software employs mechanisms to make it difficult to discover these 

1 5 values through a process of reverse engineering. 

197. A method for secure unidirectional messaging from a sender to a recipient, the method comprising: 

obtaining, by the sender, a public key and destination address of a message recipient and the sender's 
own private signing key and certificate chain from one or more trusted source; 

20 passing, by the sender, the extracted public key and matching destination address and private signing 
key and certificate chain information, and the data of an intended message along with the recipient's 
public enveloping key and a random data encryption key and random padding seed to a cryptographic 
primitive; and 

constructing, by the sender, a secure unidirectional message there from. 

25 

198. The method of claim 197. further comprising: sending, by the sender, the constructed secure 
unidirectional message to the recipient. 

199. The method of claim 198, further comprising: 

30 receiving the secure unidirectional message by the redpient; 

extracting, by the Recipient, the recipient's own private key from a secure source and decrypting the 
public key encryption, and the data encryption key and decrypting the data which is digitally signed; and 

verifying the signature of the data and the certificate chain of the sender. 
35 200. The method of claim 198, wherein the message is an e-mail message. 



201 . The method of claim 198. wherein the message is a Storymail story message. 
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202. The method of claim 198, wherein the trusted source or storage means comprises a Compact 
Certificate as explained earlier, or chain of Compact Certificates leading to a trusted root public key. 



5 203. A computer program product for use in conjunction with a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 
sen/er, to function in a specified manner to provide message communications, the message 
10 communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for secure certificate issuing by an Issuer to a 
Client requesting the certificate, the program module including instnjctions for: 

A. extracting, by a certificate requesting client, a network address for the Issuer from a trusted source or 
storage means; 

15 B. extracting, by the client, a Resource Tag related to Its own Subject Name from a message that was 
received from a Server; 

C. extracting, by the client, a public and private key and certificate chain from a trusted source; 

D. using the extracted infomnation to create a secure session with the Issuer that authenticates the 
issuer using the same protocol; 

20 E. sending, by the client, as the client's first Data message after any session setup messages, a data 
structure that has a common header with fields for Type, Version and Content-Length, and contents that 
include the Resource Tag, the Client's Subject Name, and optionally one or more public keys that the 
Client has generated; 

F. verifying, by the certificate issuer, that a valid Sen/er issued the Resource Tag and that the Resource 
25 Tag Is valid for the given received Subject Name; 

G. creating, by the issuer, a Compact Certificate with one or more public keys and with the Client's 

Subject Name; 

H. digitally signing, by the issuer, the certificate with the Issuer's private key; and 

I. sending, fay the certificate Issuer, a message back to the Client over the secure channel, where the 
30 message includes the Compact Certificate and if the Issuer generated the public key(s), the message 

Includes the matching private key(s). 

204. A hardware architecture neutral and operating system neutral and network transport neutral 
method for secure certificate issuing by an Issuer to a Client requesting the certificate using less sofhA/are 
36 code and networic bandwidth than conventional systems, the method comprising the steps of: 

A. extracting, by a certificate requesting client, a networic address for the Issuer from a taisted source or 
storage means; 

B. extracting, by the client, a Resource Tag related to its own Subject Name from a message that was 
received from a Server; 

40 C. extracting, by the client, a public and private key and certificate chain from a trusted source; 
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10 



15 



20 



25 



30 



D. using the extracted information to create a secure session witti the Issuer that authenticates the 
issuer using the same protocol; 

E. sending, by the client, as the client's first Data message after any session setup messages, a data 
structure that has a common header with fields for Type. Version and Content-Length, and contents that 
include the Resource Tag. the ClienVs Subject Name, and optionally one or more public keys that the 
Client has generated; 

F. verifying, by the certificate issuer, that a valid Sen/er Issued the Resource Tag and that the Resource 
Tag is valid for the given received Subject Name; 

G. creating, by the issuer, a Compact Certificate with one or more public keys and with the Clienf s 
Subject Name; 

H. digitally signing, by the Issuer, the certificate with the Issuer's private key; and 

I. sending, by the certificate issuer, a message back to the Client over the secure channel, where the 
message Includes the Compact Certificate and if the Issuer generated the public key(s), the message 
includes the matching private key(s). 

205. The method in Claim 204, further conriprising: the client placing the Compact Certificate and keys 
into its trusted source or storage means. 

206. The method in Claim 204, wherein the one or more public key(s) are generated by the Issuer or 
send to the Issuer by the Client who generated them. 

207. The method in Claim 204, wherein where the one or more public key(s) are sent to the Issuer by 
the Client who generated them. . 

208. The method in Claim 204, wherein the trusted source or storage means is data compiled into the 
Client software. 

209. The method in Claim 204, wherein the trusted source or storage means is data received from 
communicating with a Server via a secure session, 

210. The method in Claim 204, wherein the trusted source comprises a trusted storage. 

211. The method in Claim 204, wherein the network address comprises a URL 

212. The method in Claim 204, wherein the Resource Tag comprises a message tag. 



213. The method in Claim 204, wherein the Subject Name comprises an e-mail address. 
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214. The method in Claim 204, wherein the public and private key operations are performed by any 
asymmetric cryptosystems. 

215. The method in Claim 214. wherein the asymmetric cryptosystem is selected from the group 
5 consisting of RSA. Elliptic Curve, and NTRU. 



216. The method in Claim 204, wherein the public and private key extracted by the client are fixed 
public and private keys. 

10 217. The method in Claim 204, wherein the public and private key and certificate chain extracted by the 
client are fixed public and private keys and certificate chain. 

218. A method for secure certificate issuing by an issuer to an entity requesting the certificate, the 
method comprising: 

15 extracting, by the entity, a network address for the certificate issuer from a trusted source; 

extracting, by the entity. Information Including a resource tag related to its own subject name from a 
message that was received from a server, and a public key and a private key and certificate chain from a 
trusted source; 

using, by the entity, the extracted information to create a secure session with the issuer that 
20 authenticates the Issuer; and 

sending, by the entity, as a component of the entity's first data message after any session setup 
messages, a data structure that includes the resource tag and subject name. 

219. The method of claim 218, further comprising: 

25 verifying, by the issuer, that a valid server Issued the resource tag and that the resource tag Is valid for 
the given received subject name; 

creating, by the issuer, a certificate with one or more public keys and with the entity's subject name; 
digitally signing, by the issuer, the certificate with the issuer's private key; and 

sending, by the issuer, a message back to the entity over the secure channel, where the message 
30 includes the certificate. 

220. The method of claim 219, further comprising: receiving the certificate by the requesting entity. 



35 



221. The method of claim 219, wherein the requesting entity comprises a requesting client. 

222. The method of claim 218, wherein the requesting entity comprises a requesting client. 
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223. The method of claim 21 9, wherein if the Issuer generated the public key(s), the message sent back 
to the entity Includes the matching private key(s). 

224. The method of dalm 219, wherein the requesting entity comprises a requesting client. 

225. The method of claim 219, wherein the data structure includes a common header with fields for 
type, version, and content-length, and contents that include the resource tag, the entit/s subject name. 

226. The method of claim 225» wherein the data structure further optionally includes one or more public 
keys that the entity has generated. 

227. The method of claim 226, wherein the entity comprises a client 

228. The method of claim 204. wherein the tmsted source or storage means comprises a Compact 
Certificate as explained earlier, or chain of Compact Certificates leading to a trusted root public key. 



229. A computer program product for use in conjunction with a computer system having a server and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
module that directs the computer system and/or components thereof including at least one or the client or 
server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and network transport protocol neutral manner for conducting a secure response session, the 
program module including instructions for 

A. extracting, by a Client who is establishing a secure response session to a Entity in order to respond 
to a message from, the Entity, the Entity's public key and matching destination address of the Entity from 
a trusted source or storage means; 

B. extracting, by the Client, the Client's public and private key and certificate chain from a trusted source 
or storage means; 

C. using the extracted client public and private key and certificate chain information along with the 
previously extracted Entity destination address to create a secure session with the Entity using a secure 
session protocol; 

D. sending, by the Client, a first Data message after any session setup messages, that contains a 
Resource Tag that was included in the message received from the Entity to which this client initiated 
session is a response; 

E. setting up, by the Entity, the session setup portion of the secure session protocol; and 

F. verifying, by the Entity, the Client's certificate chain and the Resource Tag that is received in the first 
Data message from the Client. 
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230. A hardware architecture neutral and operating system neutral and network transport neutral 
method for secure response session using less software code and network bandwidth than conventional 
systems, the method comprising the steps of: 

5 A. extracting, by a Client who is establishing a secure response session to a Entity in order to respond 
to a message from the Entity, the Entity's public key and matching destination address of the Entity from 
a trusted source or storage means; 

B. extracting, by the Client, the Client's public and private key and certificate chain from a trusted source 
or storage means; 

10 C. using the extracted client public and private key and certificate chain infonnation atong with the 
previously extracted Entity destination address to create a secure session with the Entity using a secure 
session protocol; 

D. sending, by the Client, a first Data message after any session setup messages, that contains a 
Resource Tag that was included in the message received from the Entity to which this client initiated 

15 session Is a response; 

E. setting up, by the Entity, the session setup portion of the secure session protocol; and 

F. verifying, by the Entity, the Client's certificate chain and the Resource Tag that is received in the first 
Data message from the Client. 

20 231 ..The method In Claim 230. further comprising: 

G. exchanging, between the Client and the Entity, additional data related to the application that is using 
the secure response protocol. 

232. The method In Claim 230, further comprising: 

25 H. tenninating the session, by either the Client or the Entity, by closing the underlying network 
connection. 

233. The method in Claim 232, wherein the underlying network connection is a TCP-based network 
connection. 

30 

234. The method in Claim 232, wherein the public key and matching destination address has been 
verified previously using a digital signature (verified with a trusted public key) or cryptographic checksum 
(verified with a trusted key derived from a IVlaster Key or Session Key or Message Key). 

35 235. The method In Claim 230, wherein the Entity's public key comprises a RSA or a RSA based public 
key. 



236. The method in Claim 230, wherein the matching destination address comprises a URL or URL 
based address. 
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237. The method in Claim 230, wherein the trusted source or storage means comprises data selected 
from the set consisting of a nonnal conventional e-mail message, a non-secured web page, a secured 
web page, and combinations thereof. 



236. The method in Claim 230, vi^erein the secured web page is secured by any of SSL, PCT, orTLS. 

239. The method in Claim 230, wherein the trusted storage means comprises data received from 
communicating with a Server via a secure session. 

10 

240. The method in Claim 230, wherein the Client's keys and certificate chain comprise fixed values. 

241. The method in Claim 230, wherein the Client's keys and certificate chain comprise fixed values 
shared by more than one Client system and wherein the Entity authenticates the Client based on this 

15 Resource Tag. 

242. The method in Claim 230, wherein the Client's keys and certificate chain are unique to this Client, 
and the Entity authenticates the Client using this unique certificate and/or using a Resource Tag was 
included in the message received from the Entity to which this session is a response. 

20 

243. The method in claim 230, wherein the Entity comprises a Merchant. 

244. A method for conducting a secure response session from a Client that is establishing a secure 
response session to an Entity in order to respond to a message from the Entity, the method comprising 

25 the steps of: 

extracting, by the Client, information including the Entity's public key and destination address and 
Client-s public and private key and certificate chain from one or more trusted source; 

using, by the Client, the extracted information to create a secure session with the Entity using a secure 
session protocol; and 

30 sending, by the Client, a first data message that contains a resource tag that was included in the 
message received from the Entity to which this Client initiated session is a response. 

245. The method in claim 244, wherein the first data message is sent after one or more session setup 



5 



message. 



35 



246. The method in claim 244. further comprising: 

setting up, by the Entity, the session setup portion of the secure session protocol; and 
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verifying, by the Entity, the Client's certificate chain and the Resource Tag that is received in the first 
Data message from the Client. 

247. The method in claim 244, wherein the Entity comprises a Merchant. 



248. The method in claim 246, wherein the Entity comprises a Merchant. 

249. The method of claim 230, wherein the trusted source or storage means comprises a Compact 
Certificate as explained eariier, or chain of Compact Certificates leading to a tnisted root public key. 



250. A computer program product for use in conjunction with a computer system, the computer program 
product comprising a computer readable storage medium and a computer program mechanism 
embedded therein, the computer program mechanism, comprising: a program module that directs the 
computer system and/or components thereof, to function in a spedfied manner to conduct a secure 
15 response session from a Client that is establishing a secure response session to an Entity in order to 
respond to a message from the Entity and occumng in a computer system hardware architecture neutral 
and operating system neutral and networi^ transport protocol neutral manner for conducting a secure 
response session, the program module including instructions for 

extracting, by the Client, infomnation including the Entity's public key and destination address and 
20 Clients publrc and private key and certificate chain from one or more trusted source; 

using, by the Client, the extracted information to create a secure session with the Entity using a secure 
session protocol; and 

sending, by the Client, a first data message that contains a resource tag that was included in the 
message received from the Entity to which this Client initiated session is a response. 



251 , A computer program product for use in conjunction with a computer system having a sen/er and a 
client, the computer program product comprising a computer readable storage medium and a computer 
program mechanism embedded therein, the computer program mechanism, comprising: a program 
30 module that directs the computer system and/or components thereof including at least one or the dient or 
server, to function in a specified manner to provide message communications, the message 
communications occurring in a computer system hardware architecture neutral and operating system 
neutral and networic transport protocol neutral manner for secure unidirectional response message, the 
program module including instmctions for: 

35 A. extracting, by a Client who is sending a secure response message to the Entity in order to respond to 
a message from the Entity, the Entity's public key and matching destination address of the Entity from a 
trusted storage means; 

B. extracting, by the Client, the Client's public and private key and certificate chain from a trusted source 
or storage means; 



5 



10 



25 
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C. using, the extracted Clienfs public and private key and certificate chain infonnation along with the 
previously extracted Entity's destination address to create a secure unidirectional message to the Entity 
using the a secure unidirectional message protocol, a data portion of the Client's message containing a 
Resource Tag that was included in the message received from the Entity to which this message is a 



D. verifying, by the Entity, the Client's certificate chain. 

252. A hardware architecture neutral and operating system neutral and network transport neutral 
method for secure unidirectional response message using less software code and network bandwidth 

10 than conventional systems, the method comprising the steps of: 

A. extracting, by a Client who is sending a secure response message to the Entity in order to respond to 
a message from the Entity, the Entity's public key and matching destination address of the Entity from a 
trusted storage means; 

B. extracting, by the Clrent, the Clienfs public and private key and certificate chain from a trusted source 
15 or storage means; 

C. using, the extracted Clienfs public and private key and certificate chain infonmation along with the 
previously extracted Entity's destination address to create a secure unidirectional message to the Entity 
using the a secure unidirectional message protocol, a data portion of the Clienfs message containing a 
Resource Tag that was included in the message received from the Entity to which this message is a 

20 response; and 

D. verifying, by the Entity, the Clienfs certificate chain. 

253. The method in Claim 252, further comprising: E. performing, by the Entity, an appropriate 
application-level action for the received response message. 

25 

254. The method in Claim 252, wherein the Entity's public key comprises an RSA or RSA-based key. 

255. The method in Claim 252, wherein the matching destination address comprises an e-mail address. 

30 256. The method in Claim 252, wherein the public key and matching destination address have been 
verified previously using a digital signature (verified with a trusted public key) or cryptographic checksum 
(verified with a trusted key derived from a Master Key or Session Key or Message Key). 

257. The method in Claim 252. wherein the trusted source or storage means comprises data from a 
35 normal e-mail message, a non-secured web page, or a secured web page, or combination thereof. 

258. The method in Claim 252, wherein the web page is secured by one of the set consisting or SSL, 
PCT. orTLS. 



5 



response; and 
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259. The method in Claim 252, wherein the trusted source or storage means comprises data received 
from communicating with a Server via a secure session. 

260. The method in Claim 252, wherein the Client's keys and certificate chain are fixed values shared 
5 by more than one Client system, and the Entity authenticates the Client based on this Resource Tag. 

261. The method in Claim 252, wherein the Client's keys and certificate chain are unique to this client, 
and the Entity authenticates the Client using this unique certificate and/or using a Resource Tag which 
was included in the message received from the Entity to which this session is a response. 

10 

262. The method in Claim 252, wherein the Entity authenticates the Client using the certificate and/or 
using a Resource Tag which was included in the message received from the Entity to which this session 
is a response. 

15 263. The method in Claim 252, wherein the verifying by the Entity, further includes optionally verifying 
the Resource Tag that is included in the Data portion of the received message. 

264. The method in Claim 252, wherein the secure unidirectional message protocol comprises using 
the Signed-lnside-Enveloped-Data cryptographic primitive. 

20 

265. The method in claim 252, wherein the Entity comprises a Merchant. 

266. A method for communicating a secure unidirectional response message from a Client that is 
sending a secure response message to the Entity in order to respond to a message from the Entity, the 

25 method comprising the steps of: 

extracting, by the Client, Infonnation including the Entity's public key and matching destination address 
and the Client's public and private key and certificate chain from one or more trusted source; and 

using, by the Client, the extracted information to create a secure unidirectional message to the Entity 
using the a secure unidirectional message protocol, a data portion of the secure unidirectional message 
30 containing a resource tag that was included in the message received from the Entity to which the secure 
unidirectional message is a response. 

267. The method in daim 266, further comprising sending the secure unidirectional message to the 
entity. 

35 

268. The method in claim 267. further comprising verifying, by the Entity, the Client's certificate chain. 
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269. The method of daim 266, wherein the trusted source or storage means comprises a Compact 
Certificate as explained earlier, or chain of Compact Certificates leading to a trusted root public key. 

270. The method of daim 252, wherein the trusted source or storage means comprises a Compact 
5 Certificate as explained eariier, or chain of Compact Certificates leading to a trusted root public key. 

271. A hardware architecture neutral executable program structure for execution in a processor, 
said program structure comprising: 

a plurality of instruction threads selected from a library of possible instruction threads; 

10 a plurality of data parameters integrated among at least some of said instruction threads and 

influencing execution of said instruction threads; and 

at least some of said selected Instruction threads being adapted for cooperative execution with 
other of said Instoiction threads by yielding ownership of said processor upon the occurrence of a 
predetermined condition. 

15 

272. The program structure in claim 271, wherein said Instructions comprise operation codes 
representing commands executable in a processor. 

273. The program structure in claim 271, wherein said predetermined condition comprises said 
20 yielding instruction yielding after a predetermined time period of ownership. 

274. The program structure in daim 271, wherein said predetermined condition comprises said 
yielding instruction yielding upon determining that a required resource Is constrained. 

25 275. The program structure in daim274, wherein said constrained resource is selected from the 
group consisting of a memory buffer, an input device, an output device, an input/output device, a digital 
audio processor, a display device, a communication linl<, a communication bus, a buffer, a data 
compression processor, a data decompression processor, a vertical refresh signal (so user does not see 
display screen refresh), a time limit being exceeded or not yet being exceeded, and combinations 

30 thereof. 

276. The program structure in daim 275, wherein a charaderistic of said constrained resource is the 
constraining condition associated with the resource. 

35 277.. The program structure in daim 276, wherein said characteristics are selected from the group 
characteristics consisting of: a buffer existing, a buffer not existing, a buffer being initialized, a buffer 
being uninitialized, a buffer holding a set of data, a buffer not holding a set of data, a buffer holding a 
subset of a set of data, a buffer not holding a subset of a set of data, and combinations thereof. 
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278. The program structure in daim 276, wherein said characteristics are selected from the group of 
an input device, output device, or input/output device signaling that It is available, not available, has text, 
selection, location,, textural or other Input data available or not available and combinations thereof. 

5 279. The program structure in claim 276, wherein said characteristics are selected from the group of 
characteristics consisting of: a digital audio proce$sor» display device, a communication link, a 
communication bus. a buffer, a data compression processor, a data decompression processor, a vertical 
refresh signal being in a ready state, a vertical refresh signal not being in a ready state, condition where 
capacity or features are assured or not assured, and combinations thereof. 

10 

280. The program structure in claim 271 , wherein said instruction thread is selected from the group 
of instruction threads that: perform a navigation; make a decision; scale a data item; decompress a data 
item; set a parameter; use a parameter; circulate a parameter; generate data; generate a parameter or 
instruction stream; parse a data item; format a data item; select a data item; test a data item; respond to 

15 an input; send messages; receive messages; receive responses to messages; request file from a server 
or other source; store data; perform calculations; perfomn an animation; perform signal or image 
processing; respond to a data or command from a user; send a message; request a f/le; request 
additional data in a data stream; request data and/or commands in a stream of data and/or commands; 
navigate; make a decision; scale; decompress; set, use, and calculate parameters; cause audio to be 

20 rendered, cause video to be rendered generate other data and/or procedural streams; parse, format, and 
select text and other media elements such as images, graphics, and audio; respond to item selection by 
a story player user; request further files during streaming, format XML (or XML extensions); format text; 
validate user input; perform calculations, simulations, animations, special effects, signal processing, run- 
time scaling and synchronization tasks; and combinations thereof. 

25 

281 . The program structure in claim 280, wherein said data items are selected from the set of data 
items consisting of a digital image media data item, a digital audio media item, transition and special 
effects control data and combinations thereof. 

30 282. The program structure in claim 280, wherein said response to data or commands, or other 
input from a user comprises responding by causing a program subroutine or other computer program 
code to be executed on the thread in which the input, data, or commands are detected. 

283. The program structure in claim 280, wherein said requesting additional data and/or commands 
35 in a stream of data and/or commands comprises requesting additional ones of said instruction threads 

integrated with said data parameters. 

284. The program structure in claim 271 , wherein said cooperative execution is under programmatic 
control. 

40 



285. 



The program structure In claim 271. wherein: 
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said predetermined condition is eitiier (i) yielding after 'a predetermined time period of 
ownership, or (ir) yielding upon determining that a required resource is constrained, or (iii) a combination 
of yielding after a predetermined time period of ownership, and yielding upon detennining that a required 
resource is constrained. 



286. The program structure in claim 285, wherein said resource being constrained comprises said 
resource being unavailable at the time access to said resource is required. 

287. The program structure in claim 285, wherein said a predetermined time period of ownership is 
10 established programmatically. 

288. The program structure in claim 285, wherein said a predetermined time period of ownership is 
provided as a parameter within said message. 

15 289. The program structure in claim 286, wherein said operation codes comprise integers and an 
association between said integer and an operation is identified by a table look up procedure, said 
integers providing a compact representation of said operations. 

290. The program structure in claim 271, further including an instruction thread retry attribute 
2Q associated with at least some of said possible instruction threads, said retry attribute causing said 

processor to repeatedly retry to execute an instruction thread that has yielded ownership of said 
processor either (i) aftei* s predetermined time period of ownership, (ii) after running all of the active 
threads until each has yielded the processor, or (iii) upon detemnining that a required resource is 
constrained. 

25 

291 . The program structure in claim 271 , wherein: 

said instructions comprise operation codes representing commands executable in a processor; 

said predetermined condition comprises said yielding instruction yielding after a predetermined 
time period of ownership, or said yielding instruction yielding upon detemnining that a required resource is 
30 constrained; 

said constrained resource is selected from the group consisting of a memory, an input device, 
an output device, an input/output device, a digital audio processor, a display device, a communication 
link, a communication bus, a buffer, a data compression processor, a data decompression processor, a 
vertical refresh signal (so user does not see display screen refresh), a time limit being exceeded or not 
35 yet being exceeded, and combinations thereof; and 

said Instruction thread is selected from the group of instruction threads that perfomn a function 
selected from the set of functions that: perfomi a navigation; make a decision; scale a data item; 
decompress a data item; set a parameter; use a parameter; circulate a parameter; cause audio to be 
rendered; cause video to be rendered; generate data; generate a parameter or instruction stream; parse 
40 a data item; format a data item; select a data item; test a data item; respond to an input; send messages; 
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receive messages; receive responses to messages; request file from a server or other source; store data; 
perform calculations; perfonm an animation; perform signal or Image processing; respond to a data or 
command from a user; send a message; request a file; request additional data in a data stream; request 
data and/or commands in a stream of data and/or commands; navigate; mal^e a decision; scale; 
5 decompress; set; use, and calculate parameters; generate other data and/or procedural streams; parse, 
format, and select text and other media elements such as Images, graphics, and audio; respond to item 
selection by a story player user; request further files dunng streaming, format XML (or XML extensions); 
format text; validate user input; perform calculations, simulations, animations, special effects, signal 
processing, run-time scaling and synchronization tasks; and any combination thereof. 

10 

292. A method for cooperatively executing a plurality of code threads in a processor, said method 
comprising steps of: 

(a) communicating a plurality of code threads. Including a first code thread and a second code 
thread, to a processor for execution; 

15 (b) setting a program counter for execution of said first code thread; 

(c) allocating ownership of said processor exclusively to execution of said first code thread and 

executing said first code thread until said first code thread completes execution, except stopping 
execution of said first code thread and yielding ownership of said processor by said first code thread 
during said execution to said second code thread upon the occurrence of a predetermined first code 
20 * thread yield condition; 

(d) if execution of said first code thread has been stopped, then storing an indication that 
execution of said first code thread has been stopped, including a program counter value for said stopped 
first code thread, in a storage location; 

(e) setting said program counter for execution of said second code thread; 

25 (f) allocating ownership of said processor exclusively to execution of said second code thread 

and executing said second code thread until said second code thread completes execution, except 
stopping execution of said second code thread and yielding ownership of said processor by said second 
code thread to any other one of said plurality of code threads upon the occun'ence of a predetemiined 
second code thread yield condition; 

30 (g) reallocating ownership of said processor and re>executing said first code thread according 

to predetermined processor ownership reallocation rules; 

(h) retrying execution of said yielded first code thread including setting said program counter 
with said stored program counter for said stopped first code thread and re-executing said first code 
thread; and 

35 (i) repeating steps (b) through (g) for each of said plurality of code threads until each of said 

plurality of code threads has been executed. 



293. The method in claim 292, wherein said predetermined first code thread yield condition 
comprises yielding after a predetermined time period of processor ownership. 
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294. The method in claim 292, wherein said predetemnined first code thread yield condition 
comprises yielding upon determining that a resource required for execution is constrained. 

295. The method in claim 292, wherein said predetermined first code thread yield condition and said 
5 second code thread yield conditions are each selected from the group consisting of: (i) yielding after a 

predetermined time period of ownership, or (ii) yielding upon determining that a required resource is 
constrained, and a combination thereof. 

296. The method in claim 293, wherein said cooperative execution of said plurality of instruction 
10 threads is achieved by establishing said predetermined time period of ownership of at least selected ones 

of said plurality of threads as a Instruction thread execution parameter communicated with said 
instruction thread. 

297. A method for cooperatively executing a plurality of code threads in a processor, said method 
15 comprising steps of: 

sequentially executing a plurality of code threads until a predetermined code thread yield 
condition is detected for a particular code thread; 

stopping execution of said particular code thread for which said, thread yield condition was 

detected; 

20 storing an indication that execution of said particular code thread was stopped before 

completion In a memory storage location; 

resuming sequential execution of said plurality of code threads at the next sequential code 
thread following said particular code thread; 

retrying execution of said particular code thread during said resumed sequential execution 
25 according to predetermined rules for preempting a next sequential code thread and retrying execution of 
said particular code thread In preference to a next sequential code thread. 

298. The method in claim 297, wherein said step of retrying includes storing an indicator for said 
preempted next code thread and retrieving said stored indicator for said particular code thread. 

30 

299. The method in claim 298, wherein said stored indicator for said preempted next code thread 
comprises a program counter value for said preempted next code thread, and said stored indicator for 
said particular code thread comprises a program counter value for said particular code thread that was 
yielded. 

35 

300. The method in claim 299, further comprising the step of resuming said sequential execution of 
code threads after said particular code thread has been executed by retrieving said stored program 
counter value for said preempted next code thread. 
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301. The method in claim 297, wherein said code thread yield condition comprises yielding after a 
predetermined time period of processor ownership. 

302. The method in claim 297, wherein said code thread yield condition comprises yielding upon 
5 determining that a resource required for execution is constrained. 

303. The method in claim 297. wherein said predetemnined first code thread yield condition and said 
second code thread yield conditions are each selected from the group consisting of. (i) yielding after a 
predetermined time period of ownership, or (iO yielding upon determining that a required resource is 

1 0 constrained, and a combination thereof. 

304. The method in claim 297, wherein cooperative execution of said plurality of instruction threads 
is achieved by establishing said predetermined time period of ownership of at least selected ones of said 
plurality of threads as a instruction thread execution parameter communicated with said instruction 

15 thread. 

305. The method in claim 297, wherein cooperative execution of said program instruction threads is 
achieved by detecting a resource constraint and returning a code to the instruction dispatcher to set the 
program counter to point back to the same returned instruction before yielding to the next thread. 

20 

306. A method for automatically and autonomously generating a customized combined data and 
procedural file from non-procedural flat file descriptions, said method comprising steps of: 

retrieving a plurahVof flat file format content precursors from at least one storage location; 

segmenting said retrieved plurality of flat file format content precursors into segments 
25 comprising procedural representation sequences; 

generating linkage information sequences for said segments; 

binding said segments and linkage infonnation sequences into a set of logical files; and 
packaging said set of logical files into a single story file. 

30 307. The method in Claim 306, wherein said linkage information sequences are generated by a 
procedure selected from the set of procedures consisting of a segmentor procedure, a transcoder 
procedure, a combined segmentor and transcoder procedure, and combinations thereof. 

308. The method in Claim 306, wherein said step of binding further includes receiving inputs 
35 identifying story player device characteristics. 

309. The method in Claim 306, wherein said step of binding further includes receiving inputs 
identifying story player device user preferences. 
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310. The method in Claim 307, wherein said transcoding includes receiving inputs identifying 
communication channel bandwidth characteristics. 

5 311. The method in Claim 307, wherein said transcoding includes receiving inputs identifying story 
player device characteristics, story player device user preferences, and communication channel 
bandwidth characteristics. 

312. The method in Claim 306. wherein the step of binding further comprises selecting particular 
1 0 sequences of segments to concatenate Into each logical file. 

313. The method in Claim 306, wherein said packaging further comprises assembling a plurality of 
said logical files info a single story file. 

15 314. The method in Claim 31 3. wherein a single story file comprises a plurality of logical files. 

315. The method in Claim 314, wherein each logical file component encapsulates control and/or 
content. 

20 316. The method in Claim 314, wherein each logical file component encapsulates one or more of 
computer program Instructions, control information, user input fomns. validation procedures, and/or multi- 
media content. 

317. The method in Claim 314, wherein said method further comprises compressing each 
25 component logical file, combining all of said compressed logical files, packaging said compressed logical 

fries, and compressing said packaged and compressed file again to generate a single story fife. 

318. The method of claim 312, wherein said selected and concatenated sequences are packaged 
into a single story file. 

30 

319. The method of claim 314, wherein said logical files are encrypted. 

320. The method of claim 314, wherein said logical files are digitally signed. 

35 321 . The method of claim 314, wherein said logical files are encrypted and digitally signed. 



322. 



The method in claim 306, wherein said linkage Information includes direct linkage information. 
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323. The method in claim 306. wherein said linkage information includes indirect linkage 
information. 

5 324. The method in claim 306, wherein said linkage tnfbmriation Includes recursive indirect linkage 
information. 

325. The method of claim 314. wherein said logical files are compressed. 

10 326. The method of claim 306. wherein said packaging further includes performing a top-level of 
compression. 

327. A system for automatically and autonomously generating a customized combined data and 
procedural file from non-procedural flat file descriptions, said system comprising: 

15 retrieving a plurality of flat file format content precursors from at least one storage location; 

a segmentor receiving a plurality of flat file format content precursors and segmenting said 
retrieved content precursors into segments comprising procedural representation sequences; 

a linker generating linkage information sequences for said segments; 

a binder binding said segments and linkage information sequences; and 

20 a packager packaging said bound segments and linkage informatton sequences into a story 

file. 

328. A computer program product for use in conjunction with a processor in a computer system or 
information appliance, the computer program product comprising a computer readable storage medium 

25 and a computer program mechanism embedded therein, the computer program mechanism, comprising: 

a program module that directs the computer system or information appliance, to function in a 
specified manner to automatically and autonomously generate a customized combined data and 
procedural file from non-procedural flat file descriptors, the program module including instmctions for: 

receiving a plurality of flat file format content precursors from a source; 

30 segmenting said received plurality of flat flie fonmat content precursors into segments 

comprising procedural representation sequences; 

generating linkage information sequences for said segments; 

binding said segments and linkage information sequences; and 

packaging said bound segments and linkage infbnnation sequences into a story file. 



329. 



A method for scaling a data set. said method comprising steps of: 
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performing a first attribute scaling of a message when preparing and before transmission of 
said message to a client device based on receiver client attributes and a priori sender knowledge of 
receiving client device and user preferences; 

perfonning a second procedural scaling of said message including executing capability 
5 determining procedures embedded within said message after message preparation, message 
transmission, and message receipt, that determine receiver client capability attributes and select a 
particular message expression from a plurality of message expressions and element selection available 
in said received message; and 

performing a third hardware abstraction layer scaling of said particular selected message 
1 0 expression to adapt said selected message expression for presentation on said client device. 

330. The method in claim 329, wherein said receiver client attributes are selected from the group 
consisting of: a message language preference, a message security preference, a message size 
constraint, connection speed, audio rendering capabilities, video rendering capabilities, device memory 
15 size, device memoiy availability, device CPU limitations, user nationality, playback engine version or 
capabilities; and combinations thereof. 



331. The method in claim 329, wherein said receiver client attributes include a communication link 
connection speed detemriined substantially during preparation of said message either (i) prior to 

20 transmission of said message, or (ii) after initiation of transmission but prior to completion of transmission 
of said message. 

332. The method in daim 330, wherein said receiver client attributes further include a 

communication link connection speed determined substantially during preparation of said message either 
25 (i) prior to transmission of said message, or (ii) after initiation of transmission but prior to completion of 
transmission of said message. 

333. The method in claim 329. wherein said receiver client attributes are selected from the group 
consisting of: a speed attribute of a processor within said client devrce, an available memory attribute of a 

30 memory device connected to said processor, an audio capability attribute, a video capability attribute, 
and combinations thereof. 

334- The method in claim 333, wherein said video capability attribute includes attributes for screen 
size, monochrome or color display capability, number of monochrome gray scale levels, number of 
35 presentable colors, color palate, and combinations thereof. 

335' The method in claim 329, wherein said procedural determinations include, when an audio 
message expression is included within said plurality of message expressions, determining whether said 
client has specific audio presentation capabilities, and when said client does not have a suitable audio 
40 presentation capability, selecting a text message expression in place of said audio message expression. 
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336. The method in claim 329, wherein said procedural determinations include, when first message 
expression is Included within said plurality of message expressions, determining whether said client has 
a first message type presentation capability, and when said client does not have said first message type 

5 presentation capability, selecting an alternate message type expression in place of said first message 
type expression while still maintaining the intent of said message. 

337. The method in claim 336, wherein said alternate message type is selected from a plurality of 
alternate message types for said first message type according to predetermined rules and on said client 

1 0 message type presentation capabilities. 

338. The method in claim 337, wherein said predetermined selection rules include selecting a text 
type attemative message when a client does not have any of an audio message type presentation 
capability, a video message type presentation capability, an audio-video message type presentation 

15 capability, a graphic message type presentation capability, or a photographic message type presentation 
capability. 

339. The method in claim 337, wherein said predetemiined selection rules include a hierarchical 
selection preference that selects the message presentation type that provides a maximum available 

20 amount of information possible for said client device. 

340. The method in claim 339, further including selecting the message presentation type using 
semantic infbnnation about the elements. 

25 341. The method in claim 339, wherein said hierarchical selection preference selects a message 
presentation type in the order of decreasing preference from highest preference to lowest preference as 
follows: (i) multi-media Including audio and motion video content; (ii) multi-media having audio and still 
graphic imagery content; (iii) motion video without audio; (iv) still graphic without audio; (v) audio; and, 
(vi) text. 



342. The method in claim 340, wherein said hierarchical selection preference selects a message 
presentation type in the order of decreasing preference from highest preference to lowest preference as 
follows: (i) multi-media including audio and motion video content; (ii) multi-media having audio and still 
graphic imagery content; (ill) motion video without audio; (iv) still graphic without audio; (v) audio; and, 



30 



35 



(vi) text. 



40 



343. The method in claim 337, wherein said predetermined selection mies include a hierarchical 
selection preference that selects the message presentation type to be a text or symbolic message 
presentation type when said client device does not support other message presentation types. 
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344. The method in claim 337, wherein said hierarchical rules are altered by a user preference. 



345. The method in claim 3446, wherein said user preference includes a user preference identifying 
a user of said client device as sight impaired, and providing an audio message format type in preference 
5 to video, graphic, or text message presentation types. 



346. The method in claim 329, wherein said step of perfomriing a third hardware abstraction layer 
scaling of said particular selected message expression comprises adapting a two-dimensional graphical 
display device having display device characteristics to display a graphical data set that does not exactly 

1 0 match said display device characteristics. 

347. The method in claim 346, wherein said graphical data set has dimensions larger than can be 
simultaneously displayed by said graphical display device, and said adapting comprises reducing said 
graphical data set so that all elements of said graphical data set can be simultaneously displayed. 

15 

348. The method in claim 346. wherein said graphical data set has dimensions smaller than will fill 
an available display dimension, and said adapting comprises magnifying said graphical data set so that 
available elements of said graphical data set fill at least one dimension of a two-dimensional display. 

20 349. The method in claim 346, wherein said graphical data set has dimensions larger than can be 
simultaneously displayed by said graphical display device, and said adapting comprises providing at least 
the functionality of one scroll bar so that a user of said client device may sequentially scroti through 
different regions of said graphical data set. 



25 350. The method in claim 349, wherein said at least one scroll bar includes the functionality of a 
horizontal scroll bar and a vertical scroll bar. 

351. The method in claim 329, wherein said step of performing a third hardware abstraction layer 
scaling of said particular selected message expression comprises adapting an audio playback device 
30 having audio playback device characteristics to playback an audio data set that does not exactly match 
said audio playback device characteristics. 



352, The method in claim 349. wherein said audio data set has a larger frequency range than can 
be reproduced by said audio playback device, and said adapting comprises reducing the frequency 
35 content of said audio data set so that said audio data set can be reproduced by said audio playback 
device. 



40 



353. The method in claim 329, wherein said step of performing a third hardware abstraction layer 
scaling of said particular selected message expression comprises adapting an audio characteristic to 
represent an audio data set that does not exactly match audio characteristics of said client device. 
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354. The method in claim 353, wherein said adaptation is selected from the group of adaptations 
consisting of: speeding up playback while reducing firequency to maintain normal sound pitch 
characteristics; changing a mono audio characteristic to a stereo characteristic, changing a stereo 

5 characteristic to a mono characteristic, changing an n-dimensional audio characteristic to an nv 
dimensional sound characteristic where m and n are any integers, moving sound around spatially, 
creating three-dimensional (3D) sound or audio effects, generating particular predetenntned or variable 
acoustic effects to simulate different sound or acoustical venues or environments, eliminating periods of 
audio silence, eliminated periods of particular predetermined audio characteristics, filtering and removing 

10 background noise, filtering to remove particular frequencies, filtering to enhance particular frequencies, 
speeding up audio reproduction, slowing down audio reproduction, adapting audio to a particular persons 
hearing range frequency and/or volume, blending audio or sounds, nonfnalizing output level for hearing 
impaired person, filtering to enhance high-frequency components for older persons, generating special 
versions of voice, perfomning kareoke filtering to suppress voice components of audio but retain music. 

1 5 and any combination thereof. 

355. The method In claim 351, wherein said adaptation comprises performing a sample rate 
conversion so that a device that does not supports all sample rates uses software and/or hardware to 
convert sample rate. 

20 . 

356. The method in claim 329, wherein said step of performing said hardware abstraction layer 
scaling comprises adapting said message expression to match said client device hardware 
characteristics. 

25 357. The method In claim 346, wherein said graphical data set is a three color graphical data set 
and said graphical display device is a monochrome display device, and said adapting comprises 
transforming said three color graphical data set to match the number of gray scale levels of said 
monochrome graphical display device. 



30 358. A method for scaling a procedure/data set, said method comprising steps of: 

perfbrniing a first attribute scaling of a message when preparing and before transmission of 
. said message to a client device based on receiver client attributes; 

performing a second procedural scaling of said message including executing capability 
detemiining procedures embedded within said message after message preparation, message 
35 transmission, and message receipt, that determine receiver client capability attributes and select a 
particular message expression from a plurality of message expressions available in said received 
message; and 

perfomning a third hardware abstraction layer scaling of said particular selected message 
expression to adapt said selected message expression for presentation on said client device; 

40 said receiver ciient attributes are selected from the group consisting of: a message language 

preference; playback engine sofhware version number; software playback engine capabilities; a message 
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security preference; a message size constraint' a speed attribute of a processor within said client device; 
an available memory attribute of a memory device connected to said processor; an audio capability 
attribute; a video capability attribute Including video attributes for screen size, monoclirome or color 
display capability, a number of monodirome gray scale levels or a number of presentable colors and 
5 color palate; a communication link connection speed determined substantially during preparation of said 
message either (i) just before preparation while said communication link is still open; (11) prior to 
transmissbn of said message, or (ill) after initiation of transmission but prior to completion of 
transmission of said message; and combinations thereof; and - 

said procedural determinations include, when first message expression is included within said 
10 plurality of message expressions, determining whether said client has a first message type presentation 
capability, and when said client does not have said first message type presentation capability, selecting 
an alternate message type expression in place of said first message type expression while still 
maintaining the intent of said message; said alternate message type is selected from a plurality of 
alternate message types for said first message type according to predetermined rules and on said client 
15 message type presentation capabilities; said predetermined selection rules include a hierarchical 
selection preference that selects the message presentation type that provides a maximum available 
amount of infonnnation possible for said client device; said hierarchical selection preference selects a . 
message presentation type in the order of decreasing preference from highest preference to lowest 
preference as follows: (i) multi-media including audio and motion video content; (ii) multi-media having 
20 audio and still graphic imagery content; (ill) motion video without audio; (iv) still graphic without audio; (V) 
audio; and, (vi) text 

359. The method in claim 358 wherein saki hierarchical rules are ovenidden by a user preference. 

25 360. The method in claim 359, wherein said user preference includes a user preference identifying a 
user of said client device as sight impaired, and providing an audio message format type In preference to 
video, graphic, or text message presentation types. 



361. The method of claim 369, wherein for hearing impaired person audio is converted into text and 
30 the text is may be rendered so that the text flashes on the screen all at once, so that the text appears 

sequentially on the screen or scrolls on the saeen, or so that the text is animated in some way to moves 
around the screen in some way and thereby avoid covering other text or infomiatlon on the screen. 

362. The method in claim 358, wherein said step of performing said hardware abstraction layer 
35 scaling comprises adapting said message expression to match said client device hardware 

characteristics. 



363. The method In claim 358, wherein said step of performing a third hardware abstraction layer 
scaling of said particular selected message expression comprises adapting a two-dimensional graphical 
40 display device having display device characteristics to display a graphical data set that does not exactly 
match said display device characteristics. 
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364. The method in claim 363, wherein said graphical data set has dimensions larger than can be 
simultaneously displayed by said graphical display device, and said adapting comprises either: (i) 
reducing said graphical data set so that all elements of said graphical data set can be simultaneously 

5 displayed, or (ii) providing at least the functionality of one scroll bar so that a user of said client device 
may sequentially scroll through different regions of said graphical data set 

365. The method in claim 358, wherein said graphical data set is a three color graphical data set 
and said graphical display device is a monochrome display device, and said adapting comprises 

10 transforming said three color graphical data set to match the number of gray scale levels of said 
monochrome graphical display device. 

366. A method for scaling a data set, said method comprising steps of: 

performing a client aWibuie scaling of a message when prepamg said message before 
15 communicating said message to a client device based on receiver client attributes; and 

performing a procedural scaling of said message within said client device including executing 
capability determining procedures embedded within said message after message preparation, message 
communication, and message receipt by said client, that detemiine receiver client capability attributes 
and selecting a particular message expression from a plurality of message expressions available in said 
20 received message. 

367. The method In claim 366, said method further comprising step of; 

performing a third hardware abstraction layer scaling of said particular selected message 
expression to adapt said selected message expression for presentation on said dlent device. 

25 

368. A method for optimizing content sent to a client device for a user that minimizes transmission 
bandwidth while maintaining the intent of the content, said method comprising: 

scaling the content (story) by the producer (composer engine) producing the content so that the 
data and procedural aspects of the content are scaled to match anticipated attributes of the target client 
30 device and user preferences at the time of composing said content; 

scaling the content by the story during execution of procedural content (instructions) to match 
the capability of the client device after the content is received by the client device; and 

scaling the content by the hardware abstraction layer to match client device specific 
characteristics to enable playback of the content on the client device. 

35 

369. The method in claim 368. wherein said hardware extraction layer scaling includes the steps of: 

comparing the hardware resources required to perform an action requested by the stoiy 
procedure executing in the client with the hardware resources available in the client device; and 
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performing a substitute action for said requested action if the available hardware does not 
permit performing the requested action 

370. The method in claim 369, wherein said substitute action is selected from the group of actions 
5 consisting of: 

(a) substituting an alternative content of a different content type for the requested content; 

(b) modifying the manner in which the requested content is presented to the user, and 

(c) modifying the requested content so that it can be presented to the user in its modified form. 

10 371. The method in claim 370, wherein the content is a digital image and said digital image is too 
targe to be displayed as a single image on the client device; and said substitute action is selected from 
the group consisting of: substituting a text description of the image for the Image, displaying a portion of 
the image and providing the functionality of scroll bars so that the user may interactively scroll to different 
portions of the Image viewing only a portion of the image at a time, decimating pixels of the image to 

15 reduce the size of the image to fit within the display area of the device display, processing the image to 
reduce the size of the image to fit within the display area of the display device, substituting a smaller 
image, and combinations thereof. 

372. The method in claim 371, wherein the content is an audio content and said client device doe^ 
20 not provide audio content playback capabilities, said substitute action comprises substituting a text 

description of the audio content 

373. The method in claim 371, wherein the content is an image or video content and said client 
device does not provide imagery or video content playback capabilities, said substitute action comprises 

25 substituting a text description of the imagery or video content. 

374. The method in dalm 43, wherein the content is a text content and attributes of the client or the 
user Indicate that the user is a blind individual and said client device provides audio output and text-to* 
speech conversion, said substitute action comprises performing a text-to-speech conversion of said text 

30 description to generate an audio content. 

375. A computer program product for use in conjunction with a computer system, the computer 
program product comprising a computer readable storage medium and a computer program mechanism 
embedded therein, the computer program mechanism, comprising: a program module that directs 

35 components of said computer system to scale a data set, the program module including instructions for. 

performing an attribute scaling of a message when preparing and before transmission of said 
message to a client device based on receiver client attributes and a priori sender knowledge of receiving 
client device and user preferences. 
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376. The computer program produce in claim 375, wherein said program module further includes 
instructions for perfomning a procedure) scaling of said message including executing capability 
determining procedures embedded within said message after message preparation, message 
transmission, and message receipt, that determine receiver client capability attributes and select a 

5 particular message expression from a plurality of message expressions and element selection available 
in said received message. 

377. A computer program product for use in conjunction with a computer system, the computer 
program product comprising a computer readable storage medium and a computer program mechanism 

10 embedded therein, the computer program mechanism, comprising: a program module that directs 
components of said computer system to scale a data set. the program module including instnictions for: 

perfonning a procedural scaling of a message including executing capability detemnining 
procedures embedded within said message after message preparation, message transmission, and 
message receipt, that detemnlne receiver client capability attributes and select a particular message 
15 expression firom a plurality of message expressions and element selection available in said received 
message. 

378. A computer program product for use in conjunction with a computer system, the computer 
program product comprising a computer readable storage medium and a computer program mechanism 

20 embedded therein, the computer program mechanism, comprising: a program module that directs 
components of said computer system to scale a data set, the program module Including Instmctions for 

performing a hardware abstraction layer scaling of said particular selected message expression 
to adapt said selected message expression for presentation on said client device. 

25 379. A computer program product for use in conjunction with a computer system, the computer 
program product comprising a computer readable storage medium and a computer program mechanism 
embedded therein, the computer program mechanism, comprising: a program module that directs 
components of said computer system to scale a data set, the program module including instructions for: 

performing a client attribute scaling of a message when preparing said message before 
30 communicating said message to a client device based on receiver client attributes; and 

performing a procedural scaling of said message within said client device including executing 
capability determining procedures embedded within said message after message preparation, message 
communication, and message receipt by said client, that detemnine receiver client capability attributes 
and selecting a particular message expression from a plurality of message expressions available in said 
35 received message. 

380. A computer program product for use in conjunction with a computer system, the computer 
program product comprising a computer readable storage medium and a computer program mechanism 
embedded therein, the computer program mechanism, comprising: a program module that directs 
40 components of said computer system to optimize content sent to a client device for a user that minimizes 
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transmission bandwidth while maintaining the intent of the content, the program module Including 
instructions for: 

scaling the content by the producer producing the content so that the data and procedural 
aspects of the content are scaled to match anticipated attributes of the target client device and user 
5 preferences at the time of composing said content; 

scaling the content by the story during execution of procedural content to match the capability 
of the client device after the content is received by the client device; and 

scaling the content by the hardware abstraction layer to match client device specific 
characteristics to enable playback of the content on the client device. 

10 

381 . A system for scaling a message data set, said system comprising: 

an attribute scaler perfomiing a first attribute scaling of a message when preparing and before 
transmission of said message data set to a client device based on receiver client attributes and a priori 
sender knowledge of receiving dient device and user preferences; 

15 a procedural scalar performing a second procedural scaling of said message data set including 

means for executing capability determining procedures embedded within said message after message 
preparation, message transmission, and message receipt, to determine receiver client capability 
attributes and to select a particular message expression from a plurality of message expressions and 
element selection available in sakJ received message; and 

20 a hardware abstraction layer scalar scaling sard particular selected message expression to 

adapt said selected message expression for presentation on said client device. 

382. The system in claim 381, wherein said attribute scalar comprises computer program code 
executing within a processor and memory coupled to said processor in a general purpose computer. 

25 

383. The system in claim 381. wherein said procedural scalar comprises computer program code 
executing within a processor and memory coupled to s^id processor in a client information appliance. 

384. The system in claim 381 , wherein said hardware abstraction layer scalar comprises computer 
30 program code executing within a processor and memory coupled to said processor In a client infonnation 

appliance. 



385. A method for communicating an Idea to a user including to a sensory or physically challenged 
user, said method comprising the steps of: 

35 identifying an idea to be communicated to a user, 

collecting and storing a plurality of alternative expressions for said Idea, each said alternative 
expression being associated with a different one of a plurality of possible outputs generated by a client 
device, each said output intended to stimulate a different sense of a user; 




wo 02/10962 PCT/USOl/23713 

266 

composing an electronic content encompassing said idea from selected ones of said plurality of 
alternative expressions; 

communicating said electronic content to said client device for presentation to said user; 

selecting a particular output to generate from among said plurality of possible outputs; and 

5 executing instructions in said client device to generate said selected output so as to stimulate a 

particular one of said user senses. 



386. The method of claim 385, further comprising: soliciting user input in one or more of a plurality of 
manners selected from the set consisting of: enumerating the available user input sources and selected 
10 from one of the enumerated input sources, from one of the enumerated inputs entering choices in words 
where the manner of input is a combinations of words, characters, letters, numbers, numbers, sentences, 
paragraphs, sets of paragraphs, so as to provide an input for filling out forms. 



387. The method in Claim 385. wherein said user senses are selected from the group consisting of 
15 sight, hearing, touch, smell, taste, and comt)inations thereof. 



388. The method in Claim 385, wherein said client device possible outputs include: a display device 
for presenting symbols, text, graphics, and pictures or motion video sensible by a users eyes; an audio 
output device for presenting a sound sensible by a users ears; a tactile output device sensible by a users 
20 touch at or through a skin surface; an electronic signal for coupling to a user skin surtece mounted or 
internally implanted sensory transducer device adapted to produce a sensory experience for said user. 



389. The method in Claim 385, wherein said step of selecting comprises the step of being selected 
by said user when said content is received. 

25 

390. The method in Claim 385. wherein said step of selecting comprises the step of being selected 
in response to an indicator received with said content. 

391. The. method in Claim 385. wherein said step of selecting comprises the step of being selected 
30 in response to user preferences identified prior to receipt of said content. 



392. The method in Claim 385. wherein said step of selecting comprises the step of being selected 
in response to client device characteristics. 

35 393. The method in Claim 392, wherein said client device characteristics are selected from the 
group consisting of: client device hardware characteristics, client device software device characteristics, 
client device firmware characteristics, client device programmatic characteristics, client device data 
characteristics, and combinations thereof. 
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394. The method in Claim 386. wherein inputs are selected from the group consisting of: eye 
movements, direct sensing of brain signals with electrodes, direct sensing of neuromuscular signals, 
sensing of skin characteristics, and combinations thereof. 



sensible indicia. 

396. The method in Claim 385, wherein said plurality of alternative expressions for said idea 
includes symbolic expression. , 



397. The method in Claim 385, wherein said plurality of alternative expressions for said idea 
includes a text expression for each content item including a description of all audio and graphical content. 

398. The method in Claim 385, wherein said sensory challenged user Is a sight impaired user, a . 
15 hearing impaired user, a sight and hearing impaired user. 

399. The method In Claim 385, wherein semantic information contained in the message is 
associated with the message and used in conjunction with said solicited user input. 

20 400. The method in Claim 385, wherein user input solicitation and enumeration is performed by 
moving a single button which causes the selection to be sequentially highlighted or sequentially 
articulated or tactilely identified. 

401 . The method in Claim 400. wherein said user input solicitation and enumeration if performed by 
25 an act selected from the set of acts consisting of: select from articulated text, selection from items 

enumerated by voice, button pressing, double mouse clicks, and combinations thereof. 

402. The method in Claim 385, wherein said enumeration comprises articulated text. 

30 403. The method In Claim 385. wherein a semantic flag mechanism provides multi-sensor capability. 

404. A multi-sensory electronic content package for communicating with sensory impaired users; 
said package comprising procedural portions and data portions. 



5 



395. The method in aaim 385, wherein said tactile output device generates a Braille tactilely 



10 



35 



405. The method in Claim 385, wherein user Input solicitation and enumeration is performed from 
input voice commands. 
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406. The method in Claim 385. wherein user input solidtation and enumeration is perfonned by 
double clicking a mouse or button. 



407. A method for identifying Information belonging to one or more classes, said method comprising 
5 steps of: 

assodating a semantic identifier with each information item in a data set to be distinguished 
from other information items in the data set; and 

searching through said data set to select information items having at least one particular 
semantic identifier, 

10 

408. The method in claim 407, wherein said semantic identifier comprises a semantic flag. 

409. The method in claim 408, wherein said semantic flag comprises at least one binary flag bit. 

15 410. The method in claim 408, wherein a plurality of said semantic flags are provided to identify a 
plurality of different story information characteristics for each item. 

411. The method in datm 410, wherein said plurality of different story information items comprise a 
first level complete story overview information and a second level complete story overview information. 

20 

412. The method in claim 411, wherein said plurality of different story information items further 
comprise multiple display screen information items. 

413. The method in claim 408, wherein each information item has an associated semantic flag or set 
25 of semantic flags contained In the file with said infomnation item, and said semantic flags identify the 

Information items as being of difFerent information items types, said information item types being selected 
from the group of infonnation item types consisting of: contains text, contains audio, and contains video. 



414. The method in claim 408, wherein each information item has an associated semantic flag 
30 contained in the file with said infomriation item, and said semantic flags identify the infomiation items as 
being of different information items types, said information item types being selected from the group of 
information item types consisting of: contains text, contains audio, contains video, contains text backing, 
contains audio backing, contains video backing, information item is selectable, information item is visible, 
is selection action description, is played back as audio for this screen, can be omitted without losing 
35 intent of message, suitable for hearing impaired, suitable for visually impaired, suitable for people with 
disabilities of movement, describes what happens when selection is made, describes complete list of 
cunently selectable Hems, Is complete text containing the entire intent of message, is objectionable for 
rendering for children under 12 years of age, is objectionable for rendering for children under 18 years of 
age, is objectionable to predetermined group of people, is objectionable for rendering for children under 
40 21 years of age, contains religion related content, contains Christian related content, contains Jewish 
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related content, contains Muslim related content, contains Hindi related content, contains Buddhist 
related content, contains Atheist related content, contains material objectionable to men, contains 
material objectionable to women, contains content material objectionable to an identified predetermined 
group of persons. 

415. The method in Claim 408. wherein said semantic flags are provided in association with every 
logical Information item unit 



416. The method in Claim 415, wherein said logical information ftem units are selected from the 
1 0 group consisting of picture, audio, text, video clip, and combinations thereof 

417. A method for communicating an idea to a sensory or physically challenged user, said method 
comprising steps of: 

(a) identifying an Idea to be communicated to a user; 

15 (b) collecting and storing a plurality of altemative expressions for said idea, each said 

alternative expression being associated with a different one of a plurality of possible outputs generated 
by a client device, each said output Intended to stimulate a different sense of a user; 

(c) composing an electronic content encompassing said Idea firom selected ones of said 
plurality of altemative expressions; 

20 (d) communicating said electronic content to said client device for presentation to said user, 

(e) selecting a particular output to generate from among said plurality of possible outputs; and 

(0 executing instructions in said client device to generate sard selected output so as to 
stimulate a particular one of said user senses. 



25 418. A method for identifying and portraying infomnation elements from a data set, said method 
comprising steps of: 

assigning semantic flags to predetermined information elements within the story data set; 

searching said story data set to identify said semantic flags within said story data set; 

associating said identified semantic flags with procedures for utilizing said information 
30 elements; and 

utilizing said information elements in accordance with predetermined procedures. 

419. The method in claim 418. wherein said assigning, searching, associating, and utilizing enables 
substantially all information elements that can be portrayed automatically to be automatically portrayed 
35 and portrays substantially ail of the infomDation that needs to be communicated to retain the intent of a 
message to be communicated by said story data set. 
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420. The method in claim 418, wherein said infomiation elements are selected from the group of 
elements consisting of navigation type infonnation elements, and content type infonnatlon elements. 

421 . A semantic flag method for Identifying content items in a data set, said method characterized in 
5 that said semantic flags provide multi-information that identifies and enumerates content items according 

to their meanings and relationships to other items to be communicated as part of the message intent- 
sensor capability. 



10 422. A method for communicating a message to a client device for interaction v/ith a sensory or 
physically challenged recipient, said method comprising steps of: 

(i) fdenfiiying an ide,a to be communicated to said sensory or physically challenged user 
recipient, said idea including a message intent which influences the content of the message; 

(ii) collecting and storing a plurality of alternative expressions for said message each said 
15 altemative expression being assodated with a different one of a plurality of possible outputs generated 

by a client device, at least some of said outputs intended to stimulate a different sense of said user; 

(iiO composing a content information set encompassing said message with said message Intent 
fifom selected ones of said plurality of altemative expressions said message including procedural 
components, data components and semantic components identifying the context for which ones or the 
20 procedural components and data components will be presented to said recipient, said presentation 
including executing ones of said procedural components and rendering of said data components; 

(iv) communicating said content information to said client device for presentation to said 

recipient; 

(v) automatically selecting a particular output to generate from among said plurality of possible 
25 outputs; and 

(vi) executing Instructions in said client device to generate said selected output so as to 
stimulate a particular one of said user senses. 

423. The method in claim 422, wherein said semantic components comprise semantic identifrers. 

30 

424. The method in claim 423. wherein said semantic identifiers comprise semantic flags. 

425. The method in claim 423, wherein said semantic components comprise single binary bit 
identifiers used in association with a multi-bit semantic flag mask. 

36 

426. The method in claim 423, wherein said semantic components comprise multi-bit identifiers 
used in association with a multi-bit semantic flag mask. 
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427. The method in daim 423, wherein said content tnfonnation comprises a StoryMail story, and 
said semantic elements comprise semantic flags embedded within the story. 

428. The method in claim 427, wherein said semantic flag elements are selected from the group of 
5 elements consisting of navigation type information elements, and content type Information elements. 

429. The method in daim 427. wherein said method further comprises steps of: 

(a) searching through said story by a procedure executing within a story playback engine within 
the receiving client device to identify procedural components and data components having one or more 

1 0 associated semantic flags; and 

(b) processing each said content infonmatton received according to the existence or non- 
existence of an assodated semantic flag, and the type of information identifled by the semantic flags. 

430. The method in daim 429. wherein said semantic flags identify a navigation type, and a content 
15 type. 

431 . The method In daim 422, further comprising step of: 

soliciting and receiving user input in one or more of a plurality of manners selected from the set 
consisting of: enumerating the available user input sources and selecting from one of the enumerated 
20 input sources, entering choices in words where the manner of input Is a combinations of words, 
charaders, letters, numbers, sentences, paragraphs, sets of paragraphs, articulated text, so as to 
provide an Input for filling out fonns. 

432. The method in claim 431 , wherein said user senses can be seleded from the group of senses 
25 consisting of sight, hearing, touch, smell, taste and combinations thereof. 

433. The method in claim 422, wherein dient device possible outputs can indude: a display device 
for presenting symbols, text, graphics, and pictures sensible by a user's eyes; an audio output device for 
presenting a sound sensible by a users ears; a tadile output device sensible by a users touch at or 

30 through a skin surface; an electronic signal for coupling to a user skin surface nrK)unted or intemally 
implanted sensory transdudng device adapted to produce a sensory experience for the user. 

434. The method in daim 422, wherein the step of seleding a particular output to generate from 
among the plurality of possible outputs includes: (i) the selection by the user when the content is 

35 received; (ii) the seledion being selected in response to an indicator received with the content; (iii) the 
seledion being selected in response to user preferences identifled prior to receipt of said content; and 
(iv) the selection being selected in response to client device charaderistics. 



10 
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435. The method in claim 434, wherein client device characteristics are selected from the group 
consisting of: dient device hardware characteristics, client device software device characteristics, client 
device fimiware characteristics, client device programmatic characteristics, client device data 
characteristics, and combinations thereof. 



436. The method in claim 431 , wherein when user inputs are solicited, such user inputs are be 
selected from the group of inputs consisting of eye movements, direct sensing of brain signals with 
electrodes, direct sensing of neuromuscular signals, sensing of skin characteristics, and combinations 
thereof. 



437. The method in claim 433, wherein said tactile output device generates a Braille encoded 
tactllely sensible indicia. 

438. The method In claim 422. wherein the plurality of alternative expressions for the idea includes 
15 symbolic expression. 

439. The method in claim 438. wherein the plurality of altemative expressions for the idea may also 
include a text expression for each content item including a description of all audio and graphical content. 

20 440. The method in claim 422, wherein the sensory challenged user is selected from the group 
consisting of a sight impaired user, a hearing impaired user, a sight and a hearing impaired user. 

441. The method In claim 431. wherein the semantic information contained in the message can be 
associated with the message and used in conjunction with said solicited user input. 

25 

442. The method in claim 431. wherein the user input solicitation and enumeration can be 
performed by moving a single button to cause the selection to be sequentially highlighted or sequentially 
articulated or tactllely Identified. 

30 443. The method in claim 431 , wherein the user input solicitation and enumeration are performed by 
an act selected from the set of acts consisting of: select from articulated text, selection from items 
enumerated by voice, button pressing, double mouse button clicks, selection based on button press 
during an automated continuous sequential- enumeration of the available selectable items, selection 
based on button presses that cause the individual enumeration of selectable Items in an order based on 

35 which buttons are pressed and with an additional button press to perform the actual selection and 
combinations thereof. 



40 



444. The method in claim 422 wherein the content adaptation and scaling uses story element 
semantics, and provides a multi-sensory electronic content package for communicating with sensory 
impaired users, the package comprising procedural portions and data portions. 
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445. The method in claim 423, wherein there are semantic flags and text behind at least a subset of 
the logical elements of the message to be communicated. 

5 446. The method in claim 423, wherein said semantic flags allow for automated procedural 
enumeration of the elements needed to communicate the intent of the message and user Interaction 
methods for presentations in a manner conforming to the selection of a given set of flags of interest and 
the values that said flags of interest must have if each element is to included in the enumeration. 

10 447. The method in claim 423, wherein the semantic flags' meanings indicate one or more of the 
following with respect to identified content: first level complete story message overview, second level 
complete story overview, first level single screen overview, second level single screen overview, contains 
text, contains audio, contains video, contains text baclcing, contains audio baclcing, contains video 
backing, is selectable, is visible, selection action description, is played back as audio for this screen, can 

15 be omitted without losing intent of message, suitable for hearing impaired, suitable for visually impaired, 
suitable for people with disabilities of movement, describes what happens when selection is made, 
describes complete list of currently selectable Items, is complete text containing the entire intent of 
message. 

20 448. The method in claim 423, wherein the semantic flags' meanings indicate one or more of the 
following with respect to identified content: Is objectionable for rendering for children under 12 years of 
age, is objectionable for rendering for children under 18 years of age, is objectionable for rendering for 
children under 21 years of age. 

25 449. The method in claim 423, wherein the semantic flags* meanings Indicate one or more of the 
following with respect to identified content: contains religion related content, contains Christian related 
content, contains Jewish related content, contains Muslim related content, contains Hindi related content, 
contains Buddhist related content, contains Atheist related content, contains material objectionable to 
men, contains material objectionable to women, and the like. These are merely exemplary and any other 

30 indicator for particular content type may be applied and coded. 

450. The method in daim 423, wherein semantic flags from additional second group of semantic 
flags are added to a first group of semantic flags to further refine the meaning of the first group of 
semantic flags, said second semantic flags being selected from the set consisting of: as being of a 

35 certain priority, as being of a certain level, or pertaining to a certain order with respect to the other said 
semantic flags which may be set for an element or set of elements. 

451 . The method in claim 423, wherein semantic dags are hierarchically structured. 
40 452. The method in claim 423, wherein semantic flags are nested. 
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453. The method in claim 423, wherein semantic flags are hierarchlcaiiy structured and nested. 

454. The method in claim 431, wherein a given set of semantic flags of interest are isolated and 
5 identified by the process of perforrrong the equivalent logical operation of a binary logical AND operation 

of the set of binary flags, with a mask value identifying the given set of semantic flags of interest. 

455. The method in claim 454, wherein the result of the logical AND operation is compared to a set 
of required binary values to determine if the element or elements associated said semantic flags meet the 

1 0 criteria for Inclusion in the enumeration of selected elements. 

456. The method in claim 454, wherein the semantic flags meet the aiteria if the result is found to 
be equal to said required binary values. 

15 457. The method in claim 454, wherein the semantic flags meet the criteria if the result is found to 
be not equal to the required binary values. 

458. The method in claim 454, wherein the semantic flags meet the criteria if the result is found to 
contain a number of set flag bits having predetermined relation to a reference criteria, said relation being 
20 selected from the set consisting of: said result being above a given threshold, said result being above or 
equal to a given threshold, said result being below a given threshold, said result being below or equal to 
a given threshold or equal to a given number, said result being of any predetermined logical or 
mathematical relation to said reference criteria. 

25 459. The method in claim 454, wherein the semantic flags can be further refined as to their 
respective meaning(s), said further identifying including said semantic flag indicating that identified 
content can be used on a particular device, that identified content can be used on a particular operating 
environment or set of operating system environments, that identified content can be used on particular 
playback engine version or versions, and/or that Identified content can be used on or in conjunction with 

30 a particular software application. 



460. A system for procedurally assuring that message intent is preserved and substantially 
optimized on players both older and newer than the story content. 

35 

461 . A system as in claim 460 where semantic information associated with story access elements 
built into the story message are used to procedurally substantially optimize the message for the playback 
capabilities while preserving the message intent in its rendering. 
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462. A method for procedurally assuring that message Intent Is preserved and substantially 
optimized on players both older and newer than the story content; said method including providing 
semantic information associated with story access elements built into the story message that are used to 
procedurally substantially optimize the message for the playback capabilities while presen/ing the 

5 message Intent in its rendering. 

463. A method for maintaining playback capability between message content and client device 
versions, said method comprising steps of: 

receiving a message content having a plurality of alternate presentations of the message each 
10 of which alternatives communicating the Intent of the message, said alternative presentations including a 
text or symbolic representation that is compatible with ail players; 

providing procedural elements within each message content that query characteristics of the 
client device to determine compatibility of the client device with the alternative presentations of the 
message; and 

15 executing said procedural elements to adapt a received message content to compatible 

characteristics of said client devk:e; 

whereby any message content Is playable on any version of any client device. 

464. The method in claim 463, wherein said message content comprises a story and the client 
20 device Includes a story player. 

465. The method in claim 463, wherein said plurality of alternate presentations comprise 
presentations having different media richness levels. 

25 466. The method in claim 465, wherein said different media richness levels are hierarchically 
organized from highest media richness to lowest media richness, and wherein the lowest richness level is 
a text, character, or symbol based representation. 

467. The method in claim 466, wherein said text, character, or symbol based representation is 
30 renderable by a text-to-speech conversion engine. 

468. The method in claim 463, wherein stories have procedural foundations in which instructions or 
commands are provided to adapt an old story to a new feature or version of a story player, or to adapt a 
new story to an old set of story features or eariier version of a story player. 

35 

469. The method in claim 463, wherein all stories ever created will run in all hardware, software, and 
operating version environments that are ever made appropriate for stories. 
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470. The method in claim 463, wherein the recognition that an instruction is not compatible and will 
not be understood is based on internal programmatic comparison between known instruction opcodes or 
other instruction Indicators. 

5 471 . The method in claim 463. wherein the recognition that an instruction Is not compatible and will 
not be understood is based on internal programmatic comparison of an explicit version number identified 
in the received story file as compared to the version of the story player. 

472. The method in claim 463, wherein version information if provided by semantic elements within 
10 said story. 

473. The method in claim 463, wherein each message content has a hierarchical richriess 
organization where the lowest richness message or content is a text, character, or other symbolic 
message or content; each version of all players by convention supporting text, character, or other 

15 symbol-based message or content so that at least a text based message or content will be interpretable 
and playable in all versions of stories and on alt story players. 

474. The method in claim 464, wherein by convention the story player ignores any commands, 
instructions, or opcodes it does not understiand and plays the text message. 

20 

475. The method in claim 464, wherein compatible procedures are communicated in the story files 
and playable within the story players. 

476. The method in claim 464, wherein the story player recognizes the receipt of a story file that is 
25 compatible with and contains features of a newer version of the story player and provides the user with 

an opportunity to download or othenA/ise acquire the updated story player software or firmware, either 
prior to playing the received story file or at a later time. 

477. The method in claim 464, wherein each story comprises procedural components, and if the 
30 story procedurally detenmines that the device doesnt have some capability needed to execute parts of 

the story, then It will execute other parts that the device does recognize and implement. 

478. The method in claim 464, wherein story players can be very thin or very light as a result of the 
intelligent selection of playback richness being implemented within each story itself. 

35 

479. The method in claim 464, wherein a basic set of features and limited richness support is 
provided in a story player core software or finmware having a size of from about 2 kilobytes to about 8 
kilobytes including an entire run-time module engine. 
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480. The method in claim 464. wherein a basic set of features and limited richness is provided in 
core software or firmware having a size of less than 100 kiiobytes including an entire run-time module 
engine. 



5 481. The method in claim 471, wherein said method further comprises step of: determining the 
receiving client device content playerversion by a procedure contained in the received content. 

482. The method in claim 471. wherein said version determination is made when the content is 
received. 

10 

483. The method in claim 471 , wherein the content comprises a StoryMail story. 

484. The method in claim 471 , wherein said content player procedure includes a software version. 
15 485. The method in claim 471 , wherein said content player procedure includes a hardware version. 

G 

486. The method in claim 471, wherein said content player procedure includes a hardware version 
and a software or firmware version and said story is compared to all said versions. 



20 487. The method in dalm 464. wherein when a new story file is received, a determination is made 
by the story procedure itself as to the playerversion number or other version indicia. 

488. The method in daim 463. wherein executable procedures within said content received 
determine which version of player software, firmware, and/or hardware are present. 

25 

489. The method In claim 463, wherein rf the version of the content player that the content is playing 
on is not right, the executable procedure itself within the content includes procedural tests and branches 
to branch to or otherwise execute different alternative procedures w'thin the same content that are 
correct for the version of the content player that will are playing the received content. 

30 

490. The method in daim 463. wherein said content is a story and said alternate executable 
procedures are contained within a single story. 

491. The method in daim 464, wherein the story procedure determines the version infbnnation and 
35 executes portions of itself that are compatible with the player version information. 

492. The method in claim 464, wherein a story contains several complete message intent 
representations at different richness level representations, and said story includes indica at the head of 
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each richness level representation that are compatibility procedures that execute and determine whether 
the playback device has the capabilities to render the representation at the intended richness level. 

493. The method in claim 492. wherein said compatibility procedures utilize instructions that are 
known to be part of a predetermined set of playback engines. 

494. The method in claim 493. wherein said predetennined set of playback engines comprises every 
playback engine version ever made. 

495. The method in claim 464, wherein the detemnination includes checking for client device support 
of the opcodes contained in the story. 

496. The method in claim 464, wherein if the playback engine and client device support the opcodes 
and other functional capabilities In the Indica at the head of each richness level representation, executing 
the procedures' rich media representation procedures at the maximum richness supported; and if the play 

back engine or device does not have the functionalrty and capabilities needed to run a particular rich 
media representation in the story, then branching to the header procedure for the next lower-richness 
media representation. 

497. The method in claim 496, wherein said detenmination and/or branching may be direct or 
iterative. 

498. The method in daim 497, wherein said direct determination uses information to match a 
richness level of the story content to the richness level appropriate to the player in one step. 

499. The method In claim 496, wherein said iterative approach progressively compares the different 
richness levels in the story to the richness level that can be rendered, starting at the highest richness 
level, and progressing to lower richness levels. 

500. The method in claim 499, wherein the lowest richness level is displaying text or other character 
or symbolic information. 

501. The method in claim 500. wherein said lowest level text or other character of symbolic 
information is converted to speech using a text-to-speech conversion engine. 

502. The method in claim 501 , wherein said version indicia comprises a playback engine version 
number. 
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503. The method in daim 464. wherein the story is constructed so that the playback engine never 
encounters instructions that it does not know alsout or does not understand even if newer instructions and 
capabilities are actually contained in parts of the story. 

5 504. The method in claim 464, wherein if the story player is a new version, the new Instructions 
included in the new version story are executed or othenwise used so that the enhanced newer features 
associated with the newer version stories are accessible; but if the if the story player receiving the new 
version story is an old player, then the story procedure will detect this and not branch to or execute any 
procedures containing new instructions not supported by the old player. 

10 

505. The method in claim 464, wherein all stories can be played in all story players for ail time to 

thereby reduce obsolescence of old players and increases the likelihood that the intent of a story 
message will be maintained substantially independent of the story player on which it is ultimately 
received and played. 

15 

506. A method of maintaining anti-hacking security in a computer system that executes procedural 
messages using native code to carry out the procedures of the message, said method comprising the 
steps of: 

20 native code carrying out the procedures of the message allocating, In a single operation, one 

contiguous memory block range having a single memory boundary position as a buffer for storage; 

protecting the allocated storage buffer from overflow by: 

reducing the number of operations the native code uses to carry out the procedures of 
the message that obtain memory pointers to the allocated buffer; and 

25 checking attempts to access a memory locations outside of the allocated single 

memory block range only against the single memory boundary position of the single buffer memory block 
range; 

so that the likelihood that a computer system hacker can create a buffer overflow and thereby 
obtain access to other menfK>ry ranges to gain entry or control over functions or data of the computer 
30 system is reduced. 

507. The method in Claim 506, wherein the computer system includes a story player device. 

508. The method in Claim 506, wherein computer code to perform memory checking is unifonn and 
35 compact. 



509. 



The method In Claim 506, wherein a common core of instructions operate on memory. 
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510. The method in Claim 506, wherein a hacker attempting to produce a memory buffer stack 
overflow in order to introduce executable code into the system is substantially prevented by the single 
memory range allocation and checking. 

5 611. The method in Claim 506, wherein the computer system provides more stable operation as a 
result of the predictable memory operating environment than would be available with conventional 
memory operating environments. 

512. The method in Claim 506, wherein the message procedures include instructions which sub- 
10 allocate all memory regions from said single memory block. 

513. The method in Claim 506, wherein the message procedures include instructions which can 
cause said single memory block to be destroyed and reallocated when different parts of the message are 
executed, thereby providing procedural flexibility while avoiding the complexities normally associated with 

1 5 memory garbage collection algorithms. 

514. The method in Claim 513 wherein the message procedures include at least one instruction 
which can presen/e some or all parts of the data stored in said single memory block in a second 
allocated memory block, which is itself also checked to make sure accesses outside of the second 

20 allocated memory block are never made while said single memory block is being reallocated. 

515. The method in Claim 514 where said second allocated memory block is always available 
during execution of said procedural messages and accesses are checked to be contained within one of 
the two allocated memory blocks. 

25 

516. A computer program product for use in conjunction with a computing machine and including a 
program module stored on a tangible medium, said program module including instructions for directing 
operating of the computing device to maintain security in a computer system that executes procedural 
messages using native code to carry out the procedures of the message, said instructions including 

30 instructions for: 

native code canying out the procedures of the message allocating, in a single operation, one 
contiguous memory block range having a single memory boundary position as a buffer for storage; 

protecting the allocated storage buffer from overflow by: 

reducing the number of oper"^tions the native code uses to carry out the procedures of 
35 the message that obtain memory pointers to the allocated buffer; and 

checking attempts to access a memory locations outside of the allocated single 
memory block range only against the single memory boundary position of the single buffer memory block 
range; 
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so that the likelihood that a computer system hacker can create a buffer overflow and thereby 
obtain access to other memory ranges to gain entry or control over functions or data of the computer 
system is reduced. 

51 7. A system comprising: 

means for hardware architecture neutral computer program language, structure and method for 
execution; 

means for autonomous generation of customized file having procedural and data elements 
from non-procedural flat-file descriptors; 

means for intelligently scaling message procedural/data sets to adapt the procedural/data sets 
to receiver attributes and maintain message intent; 

means for an intent preserving message adaptation and conversion system and method for 
communicating with sensory and/or physically challenged persons; 

means for searching and selecting data and control elements In message procedural/data sets 
for automatic and complete portrayal of message to maintain message intent; 

means for adapting content for sensory and physically challenged persons using embedded 
semantic elements in a procedurally based message file; 

means for forward and backward content based version control for automated autonomous 
playback on client devices having diverse hardware and software; 

means for reducing unauthorized access by procedural messages executing in a computer 
system to computer system or memory or programs or data stored therein; 

means for self-directed loading of an input buffer with procedural messages from a stream of 
sub-files containing sets of logical files; 

means for device-neutral procedurally-based content display layout and content playback; 

means for thin procedural multi-media player run-time engine having application program level 
cooperative multi-threading and constrained resource retry with anti-stall features; 

means for streaming multimedia-rich interactive experiences over a communications channel; 

and 

means for cooperative application-level multi-thread execution including instruction retry 
feature upon Identtlying constrained system resource. 

518. In an infonmation appliance device, a method for self-directed loading of a buffer from an Input 
stream containing at least one procedural thread having at least one executable instruction and optionally 
including parameters associated with said executable instruction, said method comprising steps of: 

initializing a first stoiy thread state to a running state; 

assigning a particular input memory buffer firom among a plurality of available memory buffers 
within said device to said first thread; 
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setting said first thread input memory buffer to be associated with \he logical file in the input 
stream having content )D zero (CID=0) and cun-ent file number zero (CFN=0) so that at story playback 
startup the device loads firom the first content portion (CID=0) of CFN=Os=content file number; 

beginning execution vwth the first logical file in the first sub-file with CFN=0 and CID=0; and 

5 accessing subsequent logical files within other subfiles that have am'ved at said information 

appliance device or are yet to be streamed into said Information appliance device, so that playback can 
begin according to predetermined criteria or preferences or instruction before all the sub-files and their 
constituent logical files have been received; 

said first thread starting the processing of the procedures and other threads comprising the 
1 0 rendering of the message; 

perfonming substantially all loading of succeeding procedural and data elements of the 
messages by explidt procedural load instructions; 

then performing one execution of all threads having said state of running including first 
performing one execution of said first thread having CFN=0 and ClO^O; and 

15 repeating said step of performing executions of threads until all of the threads have transitioned 

from a running state to a non-running state, each non-running thread transitioning from a mnning state to 
another state; 

when said step of performing is peri'ormed the first time after initialization, opening logical file 
having CID-0 and CFN=0, and reading into a buffer a first predetermined number of words, each said 
20 word having a predetemnined word size; 

said predetermined number of words either containing an entire story procedure or containing a 
load operation for loading any portion of said story procedure not contained in said predetemnined 
number of words. 

25 519. The method in claim 518, wherein explicit message procedure load instructions are the only 
method of procedural and data input words of the message, once the initial words of CID=0 and CFN=0 
have been loaded at startup. 

,520. The method in daim 51 8, wherein said first message thread is number 0. 

30 

521. The method in claim 518, wherein said mnning state further comprising a state selected from 
the set consisting of a running state, a suspended thread state, and an uninitialized thread state. 

522. The method in claim 519. wherein a second descendant thread is created, associated with 
35 input buffers and have their states set as a direct result of procedures executed on thread 0 starting with 

said initial loading of words from the logical file with CID=0 and CFN=0. 



40 



523. The method in claim 522, wherein all other threads are created, associated with input buffers 
and have their states set as a direct result of procedures running on said descendant threads or 
descendants of these threads. 
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524. The method in claim 523, where any thread in a running state can set or reset any or all 
attributes of any other thread or its own attributes. 

525. The method in claim 51 8, wherein said threads comprising Storyi^ail story threads. 

526. The method in daim 518, wherein said step of performing execution is implemented with a 
story playback cycle function, and said step of repeatedly performing execution Is implemented by 
repeatedly calling said story playback cycle function. 

527. The method in claim 518, wherein said first predetermined number of words is a fixed number 
of words. 

528. The method in claim 527, wherein said fixed number of words is 32 words. 

529. The method in claim 527, wherein said fixed number of words is a fixed number of words 
between 16 words and 512 words. 

530. The method in claim 527, wherein said predetemiined word size Is a 16-bit word size. 

531. The method in claim 527, wherein said predetermined word size is a 32-bit word size. 

532. The method in claim 527, wherein said predetermined word size Is a 64-bit word size. 

533. The method in claim 527, wherein said predetermined word size is a 96-bit word size. 

534. The method in claim 527, wherein said predetermined word size is a 128-bit word size. 

535. The method in claim 518, wherein said explicit procedural load operations are implemented 
with a LOAD_OP Instruction. 

536. The method in claim 518, wherein infomiation contained in the Input stream is determlnlstically 
and explicitly loaded into the Input buffer In response to execution of the load operations contained within 
the input stream. 

537. The method in claim 518, wherein said input buffer loading accomplished in predetermined 
fixed-length blocks. 
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538. The method in daim 518. wherein said load operation specifies a particular location in an input 
memory buffer to load the newly received logical file or portions thereof. 

5 539. The method in claim 518, wherein said method further comprises executing an instruction 
causing data in an input buffer to be moved to another location before new data is placed into the input 
memory buffer. 

540. The method in claim 518, wherein said instruction causing data in the input buffer to be moved 
10 comprises a buffer data move Instruction. 

541. The method in claim 518, wherein said load operation instruction further causing data in an 
input buffer to be moved to another location before new data Is placed into the input memory buffer. 

15 542. The method in claim 518, wherein said input buffer loading procedural components within said 
logical files explicitly and deterministically use instructions in the playback stream itseff for directing input 
buffer loading. 

543. The method in claim 518, wherein said procedural components are self-loading. 

20 

544. The method in claim 518, wherein said method further comprising constructing said Input 
stream to ensure that each load operation instruction contained within the stream loads enough of the 
stream to that another load operation instruction will be encountered and executed before any code not in 
the Input memory buffer is needed. 

25 

545. The method in claim 518, wherein said method further comprising bootstrap loading a first 
portion of procedural code into the input memory buffer when starting a new story playback. 

546. The method in claim 545, wherein said bootstrap loading comprises loading a procedure to 
30 initiate loading of said stream into said input buffer. 

547. A method for building an information stream for self-directed loading and playback in an 
infonnation appliance; said method comprising steps of: 

constructing a single physical or virtual file as a concatenation of a plurality of sub-files, which 
35 contain sets of logical files; and 

constructing each sut>-file to include at least one procedural thread having at least one 
executable instruction and optionally including parameters assodated with said instrudion. 
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548. A method for procedural layout of a display screen using rectangular regions and one degree 
of freedom, said method comprising steps of: 

assigning a display descriptor element of a display descnptor array buffer to each item to be 
5 rendered on said display; 

each said display descriptor element includes a display content buffer number, a screen 
rectangle, and a hotspot descriptor array; 

the display content buffer number identifies the item to be displayed; 

the screen rectangle identifies the area of the screen on which to display the item; 

10 the hotspot descriptor array contains hotspot elements which each contain semantic flags, information, 
and buffer numbers which can be used to control, find or select other alternative media representations 
or informative media associated with the item; 

assigning a layout rectangle to layout zero or more items spatially with respect to each other 
and the layout rectangle; 

15 intelligently setting a bounding rectangle as items are laid out; 

carrying out farther layout operations based on the bounding rectangle results of previous layout 
operations and/or based on status and branching flags set or reset while laying out the items; and 

as long as there are more items to be laid out, then repeatedly applying the set of rectangle 
based operations for each item or set of items to be laid out. 

20 

549. The method in claim 548 wherein the display descriptor assignment is performed using a 
display descriptor operation. 

550. The method in claim 549. wherein the display descriptor operation can include zero or more 
25 optional steps selected from the steps consisting o^tiie setting descriptor f^ags, setting the display item's 

buffer number, setting the screen rectangle, setting the hotspot array buffer number, and any 
combination or selection of a subset of these steps. 

551. The method in claim 548, wherein said layout rectangle is defined using a set rectangle 
30 operation. 

552. The method in claim 548, wherein the layout operation is a LAYOUT_OP operation, 

553. The method in claim 548, wherein separate branching flags are set as a result of a layout 
35 operation determining that an item or set of items to be displayed does not fit Inside the layout rectangle 

in any of a number of ways. 
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554. The method in claim 552, wherein said flags are set or reset when the item or items do or do 
not fit horizontally inside the layout rectangle. 

555. The method in claim 552. wherein said flags are set or reset when the item or items to be laid 
5 out do or do not fit vertically when wrapped into the display rectangle. 

556. The method in daim 548, wherein a layout operation is used to place the list of display 
descriptors inside the layout rectangle. 

10 557. The method in claim 556, wherein laying out the item or set of Items using a first horizontal 
center then a vertical center procedure. 

558. The method in claim 556, wherein laying out the item or set of items using a first vertical center 
then a horizontal center procedure. 

15 

559. The method in claim 556, wherein said display descriptor element contains a picture buffer 
number. 

560. The method in claim 559, wherein said picture buffer number defines a picture In RGB, RGBA. 
20 YUV. YcbCr, or Y fbnnat. 

561. The method in claim 556, wherein said display descriptor element includes a text buffer 
number. 

25 562. The method in claim 548, wherein said picture buffer number defines the text in ASCII. 
UNICODE, or multi-byte char'acter format. 

563. The method in claim 548, wherein conditional jump operation instructions are used to perform 
complex procedural layout functions, said jump operation Instmctions directing procedures to perform 

30 intelligent operations according to the layout operations' results or flag settings . 

564. The method in daim 563, wherein said conditional jump operation comprises a JUMP_OP 
instruction operation. 



35 



565. The method in claim 548, wherein said layout method is procedurally based to layout and 
display information on a display device. 
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566. The method in daim 565. wherein said information is selected from the set of information items 
consisting of graphical information, textual infomnation. character infomriation, symbolic information. 

567. The method in daim 565, wherein said infomiation indudes written language in any alphabet, 
5 character set* or other language representation. 

568. The method in daim 548, wherein said procedurally based layout and display comprising 
layout mode type operations, induding operations selected from the set of operations consisting of: 
horizontal only, horizontal evenly, spaced, vertically only, vertically then horizontal, centered, items 

10 spaced a fixed distance apart horizontally, Items spaced a fixed • distance apart vertically, and 
combinatrons thereof. 

569. The method in daim 548, wherein said procedurally-based layout and display operations 
permit content to be successfully authored to display in an acceptable manner without prior knowledge of 

15 the particular hardware characteristics of the device on which the content will be displayed. 

570. The method in daim 548, wherein said content comprises a StoryMail story. 

571. The method in claim 548. wherein said procedurally-based layout and display operations 
20 permit content to be more easily authored for display on a variety of display devices. 

572. The method in claim 548. wherein said procedurally-based layout and display operations 
permit content to be authored in a display hardware neutral manner without regard for particular display 
device hardware and/or display device driver charaderistics. 

25 

573. The method in daim 548, wherein said procedurally-based layout and display permitting 
content playback to be customized during its run-time on the player. 

674. The method in claim 573, wherein said customization is perfonned by the Hardware 
30 Abstraction Layer. 

575. The method in claim 574. wherein said customization is performed in response to user 
commanded preferences. 

35 576. The method in daim 548, wherein said procedurally-based layout and display permits content 
to be authored in a display hardware neutral manner even when hardware characteristics are known in 
advance of authoring the content without regard for particular display device hardware and/or display 
device driver characteristics. 
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577. A method for laying out two-dimensional items on a display screen having fixed physical 
dimensions and width and height dimension that are iogically unbounded, where at least one of said 
items to be displayed may require more display screen area that in physically available, said method 
comprising steps of: 

providing means for logically extending the height dimension for display of objects in a first 
screen direction, said first screen extended dimension representing a virtual screen dimension; 

generating on-screen or visible rectangle of physical picture elements (pixels) having width (W) 
and height (H); and 

generating a logical or layout rectangle allocated to a particular display task for placing spaced 
multiple items within the visible screen, said layout rectangle having the possibility of being either smaller 
than, larger than, or equal in dimension to the visible rectangle owing to the presence of the logical 
display extension means; 

specifying the layout rectangle with Instmctions that specify (i) a layout rectangle width (LW), a 
layout rectangle height (LH), and the location or coordinate of a comer of the layout rectangle with 
respect to the visual screen rectangle; 

generating layout resultant bounding rectangle having size RWxRH where RW defines the 
outside width limits of a set of laid out items; and 

laying out said items using said bounding rectangles in combination with procedural 
instructions to layout, position, set layout rectangles, and define which items are to contribute to the 
bounding rectangles used to re-layout an item or set of items, or lay out an additional item or set of items. 

578. The method in claim 577, wherein said means for logically extending comprising a scroll 
mechanism and scroll bars. 

579. The method in claim 577, wherein said means for logically extending comprising a paging 
mechanism. 

580. The method in claim 577, wherein said comer is the upper left comer. 

581. The method in claim 577, wherein any laid out items contributing to a resultant bounding 
rectangle may be subtracted from the resultant bounding rectangle prior to the final layout of additional 
items. 

582. The method in claim 581 , wherein new items may be added to items laid out to be displayed in 
the resultant bounding rectangle in prior operations. 

583. The method in claim 581, wherein new items may be combined with existing items in the 
resultant bounding rectangle according to predetenriined logical or mathematical procedures. 
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584. The method in claim 577, wherein additional Items are laid out in the resultant bounding box 
window using the layout operation instruction. 

585. The method in claim 550, wherein said layout operation instruction comprises the LAYOUT_OP 
instruction. 

586. The method in claim 583, wherein said layout operation instruction comprises the LAYOUT.OP 
instruction. 

587. The method In claim 585, wherein said method further comprising setting branching flags to 
indicate when the layout of an item or set of items (i) required a wrap to multiple vertical layers, (ii) 
required a wrap to multiple horizontal layers, (iii) goes outside the layout rectangle, or (iv) identifies 
another predetermined condition. 

588. The method in claim 585, wherein said branching flags including a "does not fit across" which 
is set if all the items do not fit across the screen and used procedurally to enable the object to be laid out 
for displayed in an appropriate manner given the item size and the available screen size or virtual 
dimensions. 

589. The method in claim 585, wherein said methdd further comprising step of using a test and 
branch operation to control layout of objects based on the branching flags. 

590. The method in daim 585, wherein said method further comprising step of using a test and 
branch operation to control layout of items based on predetermined display size and/or coordinate based 
calculation results. 



591 . A small low-overhead content playback engine comprising: 

a main procedure implemented in portable code, native processor code or hardware blocks 
that executes cooperative player engine threads in turn;. 

a boot-up sequence to assign an instruction input buffer to a startup thread, loads the first 
procedural multi-media player instructions, and starts the startup thread in a running state; 

an instruction dispatcher that fetches each instruction word of a thread in sequence or as directed by 
branching instructions, and calls a native code function or hardware block to execute each instruction 
word and the parameters that follow it in turn; 

a set of native code functions or hardware blocks which together carry out the functions of the 
multi-media player instruction words and parameters; and 
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a hardware extraction layer implemented in native code functions or hardware blocks that 
manry the portable portions of said player engine to the parts that are specific to the application or device 
that makes use of the player. 

5 592. A method for a thin low-overhead multi-media procedural content player engine, said method 
comprising steps of: 

receiving a file for playback comprising at least one sequence of fixed length words organized 
by having a plurality of instructions arranged as a linear sequence where parameters associated with a 
particular instruction immediately follow the particular instruction and wherein subsequent instructions 
10 follow the parameters associated with a previous instruction; 

operating, by said playback engine, on the sequence of instructions and parameters, said 
operating including: 

fetching the next word in the sequence, said word Including an indicia of the function to be 
performed; 

15 executing said identified function; and 

when said identified function utilizes parameters, said function then: (i) fetching the parameters 
that follow the instruction; pi) perfomning the instruction using the function and parameters; (iil) advancing 
a program counter past the parameters to the next instruction in the sequence; and, (iv) returning a 
status code for the instruction. 

20 

593. The method of daim 592, wherein said status code t>eing selected firom the set of status codes 
consisting of a success status code, an error status code, a yield status code, a informative status code, 
and a retry instruction status code. 



25 594. The method of claim 592, wherein said instruction and parameters are arranged according to 

the scheme Instructioni, paramla, paramlb, .... lnstruction2, param2a, param2b, param2c 

InstrutionN, paramNa, paramNm. 

595. The method in claim 592, wherein said content player comprises a StoryMail story player. 

30 

596. Tlie method of datm 592, wherein said status code being selected from the set of status codes 
consisting of a success status code, an enror status code, a yield status code, a informative status code, 
and a retry instruction status; and 

said instruction and parameters are anranged according to the scheme Instructioni, paramla, 
35 paramlb lnstruction2, param2a, param2b, param2c, .... InstrutionN, paramNa, paramNm.; and 

said content player comprises a StoryMail story player. 



597. 



The method in claim 592, wherein said fixed length words being 32-bit words. 
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598. The method In claim 592, wherein said fixed length words being selected from the set of fixed 
length word sizes consisting of 8-bit words. 16-bit words. 32-bit words, 40-bit words, 64-bit words. 96-blt 
words, 1 28-bit words, 256-bit words, 51 2-bit words, and any other fixed length word or byte size. 

5 599. The method in daim 592, wherein receiving a file for playback comprising at least one 
sequence of said fixed length words. 

600. The method in claim 592, wherein said fixed length words and parameters are comprised of 
numeric and/or symbolic values in any combination. 

10 

601 . The method in daim 592, wherein said instruction values identify individual fundions within a 
library of fundions. 

602. The method in claim 601, wherein said instruction values identifies one or more branch 
15 instructions. 

603. The method in daim 592, wherein said run-time module program(s) Is thin. 

604. The method in daim 592, wherein said run-time module program(s) is thin and Implemented 
20 with fewer than about 200 lines of program code. 

605. The method In claim 592, wherein said content comprises a StoryMail story. 

606. The method in daim 592, wherein said run-time module pro9ram(s) is thin and Implemented 
25 with fewer than about 1 00 lines of program code. 

607. The method In claim 592 wherein said run-time module program(s) is thin and implemented 
with fewer than about 50 lines of program code. 

30 608. The method in claim 592, wherein said run-time module program(s) is thin and implemented 
with fewer than about 50 lines of C language program code. 

609. The method in daim 592, wherein said run-time module has a low-overhead relative to 
conventional run-time systems because no sophisticated parsing, threading, synchronization, memory 
35 allocation or garbage collection mechanisms are needed. 



610. The method in daim 592, wherein execution speed is increased relative to conventional 
metiiods because processor intensive functions are performed wlUi native processor code as part of an 
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op-code's implementation, and a!l the control and navigation are performed in the very compact and very 
compressible story language instructions. 

611. The method in daim 592, wherein said method Is electrical power conservative because 
5 processor intensive functions are perfomned with optimized native processor code as part of an op-code's 

implementation, and all the control and navigation are perfomned in the very compact and very 
compressible story language instructions. 

612. The method in claim 611 wherein said processor intensive functions include inverse discrete 
10 cosine transforms (IDCTs). 

61 3. The method in claim 61 1 , wherein said story language code is small. 

614. The method in claim 592, wherein said mn-time module program mechanism uses a common 
15 set of small functions over and over again to provide the functional capabilities of larger conventional 

programs so that tasks can be run within the data and code caches of at least some processors of 
conventional computers and information appliances. 

615. The method in claim 611, wherein said method is perfonmed with fewer layers of abstraction 
20 functional modules and less complex algorithms. 

616. The method in claim 592, wherein said method provides a run-time system that eliminates the 
need to implement any of the following complex algorithm types: fi) thread creation and round robin 
thread scheduling with thread priority systems, (ii) native operating system or C library memory allocation 

25 functions, (iii) memory garbage collection functions, (iv) interrupt system functions, (v) picture 
decompression algorithms, (vi) multimedia playback system, (vii) user controls, and (viii) video and/or 
audio synchronization algorithms. 

617. The method in claim 592, wherein the size of the native code to perfomi playback of 
30 multimedia application or messages in story format is no more than from about 30 kilobytes to about 300 

kilobytes. 

618. The method in claim 592, wherein the size of the native code to perfomi playback of 
multimedia application or messages in story format is no more than about 50 kilobytes. 

35 

619. The method in claim 592, wherein the size of the native code to perform playback of 
multimedia application or messages in story format is no more than about 100 kilobytes. 
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620. The method in claim 592, wherein the size of native code is reduced by a factor of about 100 
as compared to conventional implementations. 

621. The method In claim 592, wherein the size of native code is reduced by from by a factor of 
5 about 5 times to a factor of about 1 000 times as compared to conventional implementations. 

622. The method in claim 592, wherein the size of the native code to perform playback of 
multimedia application or messages in story format is less than 500 kilobytes. 

10 623. The method in claim 592, wherein said ain-time module provides cooperative multi-threading of 
various visual or audio special effects. 

624. The method in claim 592, wherein said cooperative multi-threading occurs at the level of the 
application program. 

15 

625. The method In claim 592, wherein said cooperative multi-threading procedure further includes 
a constrained resource retry procedure. 

626. The method in claim 592, wherein said oooperath^e multnthreading with constrained resource 
20 retry occurs at the level of the application program. 

627. The method in claim 626, wherein said multi-threaded with constrained resource retry 
procedure includes steps of: running sequences of instructions for a thread as long as the instruction 
functions return as status code of success, and then executing the sequences of Instructions for the next 

25 thread for as long as the instruction functions return a status code of success; a yield status code being 
returned for any instruction or sequence of instructions that takes more than a predetermined time to 
complete so that other threads and their instructions will have an opportunity to run. 

628. The method in claim 627, wherein said status code is set to retry when a constrained resource 
30 blocks the execution of the instruction, thereby allowing other threads to run before the Instruction Is 

retried. 

629. The method of claim 626, wherein said resource constraint is selected from the set of 
constrains consisting of: time being greater than some predetermined value, time being less than some 

35 predetermined value, time being equal to some predetermined value, a buffer being available, a buffer 
not being available, a variable being less than a predetermined value, a variable being greater than a 
predetermined value, a variable being equal to a predetermined value, a variable having any 
predetermined logical or arithmetic relation to a reference value, a hardware device being ready, a 
hardware device not being ready, an electronic communication or protocol having been completed, an 

40 electronic communication or protocol not having been completed, and combinations thereof. 
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630. The method in daim 629, wherein said method further provides thread or media playback 
synchronization. 

5 631 . The method in claim 630. wherein said thread synchronization including input, video playback, 
audio playback, spedal effects of video, spedal effects of audio, or combinations thereof. 

632. The method in claim 629, wherein executing a "wait until time" type instruction that wilt start 
execution and/or not complete execution until a predetemiined set time or set times. 



633. The method in claim 632, wherein saki wait until time instruction comprising a TIME^OP 



634. The method in claim 633, wherein said set time being defined by a reference to a relative time, 
15 whether or not using Indirection plus post operations, to an elapsed time difference, to an absolute time 



635. The method in daim 632, wherein said wait until time type instmctlon retuming a retry 
instruction status if it is not time for the instruction to be executed and/or to complete execution, said 

20 return of said retry instruction status code causing execution of the next thread to execute. 

636. The method in claim 635, wherein each time the "wait until time" Instruction containing thread 
starts again it will retry the same instruction until the set time. 

25 637. The method in daim 636, wherein said set time is a constrained resource. 

638. The method in daim 637, wherein said constrained resource is time and the instruction 
constrained by time is retried If the time is not the set time or within some predetemiined difference from 
the set time. 



639. The method in daim 629, wherein a memory buffer is a constrained resource and an 
instmctlon that needs a memory buffer vwll return a retry instruction status code If the needed memory 
buffer is not available. 



10 



instruction. 



reference. 



30 



35 



640. The method in claim 629, wherein use of said retry instruction status reducing the likelihood of 
stalling the processor as a result of a resource not being available when needed. 




wo 02/10962 PCTAJSOl/23713 

295 

641 . The method in daim 629, wherein synchronization of threads is achieved using a wait for flag 
in a wait until time instruction, said wait for flag comprising a variable which is itself an element of a 
memory buffer. 



5 

642. A method for streaming electronic content from a sender to a receiver over a communication 
link, said method comprising the steps of: 

fonmlng 'a single virtual story file comprising substantially the complete electronic 
content of comprising: 

10 a set of logical files, each logical file including a header indicating that the first logical 

file procedural/data content offset is 0 and that the last procedural/data element offset is the size of the 
logical file procedural/data content less one atomic element; 

automatically and intelligently refonning the single virtual story file into a plurality of 
sequentially arrayed subfiles, each subfile including: (i) a header identifying a first subfile offset from a 
15 reference location in the single virtual file and containing a substantially complete story for a 
predetermined playback period or playback functionality; (ii) a currently executable portion with each said 
subfile that executes when said subfile is opened after receipt; and (ill) a control portion that controls 
loading and execution of other subfiles; 

communicating said single virtual file over said communication link in a data stream at 
20 a data rate commensurate with available bandwidth and characteristics of said communication (ink, said 
physical file being received by said receiver as sequential portions of said single virtual file in the form of 
individual subfiles; and 

the opening of a later received subfile being controlled by a previously received subfile 
such that each said cunrently executable portion of each of said subfiles is executed only upon the 
25 direction of an eariier executing subfile. 

643. ' The method In Claim 642, wherein a leading and previously received subfile holds and controls 
execution of a trailing and subsequently received subfile. 

30 644. The method in Claim 642, wherein each subfile includes a control portion that instructs the 
playback engine to search for and open and execute procedures and data from a preceding or trailing 
subfile or set of preceding or trailing subfiles. 

645. The method in Claim 642. wherein one or a number of subfiles is requested to be transmitted 
35 by a starting subroutine as each logical file is opened for use by the story being played. 



.646. The method in Claim 642, wherein each subfile received is executed until all subfiles for said 
single virtual file have been received and executed. 
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647. The method in Claim 642, wherein there can be branching fonward and backward to any 
number of points between sub-files because of navigation. 



648. The method in Claim 642, wherein if a trailing subfile Identified by the control portion of a 
5 leading subfile logical file has not been received, said control portion retrying opening said trailing subfile 

until it is received so that the quality of said stream is not degraded. 

649. The method in Claim 642, wherein if a trailing subfile directed to be sent and received during 
the execution of the control or main procedural parts of a previous subfile is not yet completely received 

10 at the time control is transferred to the trailing subfile, the procedure transferring control will recognize 
this as a resource constraint and automatically retry the story instruction or instructions that require the 
presence of the complete trailing subfile. 



15 



20 



650. The method in Claim 642. wherein said method is a non-real-time streaming method. 

651 . The method in Claim 642, wherein said method is a real-time streaming method. 

652. The method in Claim 642, wherein said electronic content comprises an electronic coupon for a 
product. 

653. The method in Claim 642, wherein said electronic content comprises an electronic 
advertisement for an item or service. 



654. The method In Claim 642, wherein said electronic content comprises an electronic commerce 
25 content. 

655. The method in Claim 642, wherein said electronic content comprises an electronic catalog. 

656. The method in Claim 642, wherein said electronic content comprises an electronic greeting 
30 card. 

657. The method In Claim 642, wherein said electronic content comprises an electronic content 
selected from the group consisting of real-time transmission of video and audio of events and non^real 
time audio and video of events, real-time and non-real-time transmission of navigation, and combinations 

35 thereof. 



658. The method in claim 642, wherein the electronic story content is larger than device can store at 
one time. 
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659. The method in Claim 642, wherein a high-bandwidth connection connects the sender and the 
receiver but memory in the receiving device is not of sufficient size to simultaneously store the entire 
story, said story being received as a plurality of subfiles as they are requested, sufficient memory being 

5 reserved for execution of subfiles already received, the story never residing in said memory of said 
device in its entirety at the same time. 

660. The method in Claim 642, wherein said system and method allows for fonward, backward, and 
random access of various ones of said story subfiles as navigation occurs. 

10 

661. The method in Claim 642, wherein said story subfiles are executed non-sequentially, and 
permitting non-sequential execution of subfiles in response to navigational decision inputs to said device. 

662. The method in Claim 642, wherein: 

15 a leading and previously received subfile holds and controls execution of a trailing and subsequently 
received subfile; 

each subfile includes a control potion that instructs the playback engine to search for and open and 
execute procedures and data from a preceding or trailing subfile or set of preceding or trailing subfiles; 

one or a number of subfiles is requested to be transmitted by a starting subroutine as each logical file is 
20 opened for use by the story being played; 

each subfile received is executed until all subfiles for said single virtual file have been received and 
executed; 

there can be branching fonwanJ and backward to any number of points between sub-files 
because of navigation; 

25 if a trailing subfile identified by the control portion of a leading subfile logical file has not been 

received, said control portion retrying opening said trailing subfile until It is received so that the quality of 
said stream is not degraded; 

if a trailing subfile directed to be sent and received during the execution of the control or main 
procedural parts of a previous subfile is not yet completely received at the time control is transfenred to 
. 30 the trailing subfile, the procedure transferring control will recognize this as a resource constraint and 
automatically retry the story instruction or instructions that require the presence of the complete trailing 
subfile; 

said electronic content comprises an electronic content selected from the group consisting of 
real-time transmission of video and audio of events and non-real time audio and video of events, real- 
35 time and non-real-time transmission of navigation, and combinations thereof. 

663. The method in Claim 662, wherein a high-bandwidth connection connects the sender and the 
receiver but memory in the receiving device is not of sufficient size to simultaneously store the entire 
story, said story being received as a plurality of subfiles as they are requested, sufficient memory being 
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reserved for execution of subfiles already received, the story never residing in said memory of said 
device in its entirety at the same time. 

664. A method for streaming electronic content over a communication link, said method comprising 
the steps of: 

communicating said single virtual file over said communication link in a data stream at a data 
rate commensurate with available bandwidth and characteristics of said communication link, said virtual 
file being received by said receiver as sequential portions of said single physical file; and 

controlling the opening of a later received subfile portion of said physical file being by a 
previously received subfile portion such that a currently executable portion of each of said subfiles Is 
executed upon the direction of an earlier executing subfile. 

665. The method In Claim 664, wherein said method further comprises step of forming said single 
physical file; and said single physical file comprising: 

a plurality of sequentially arrayed logical subfiles; 

a currently executable portion within each said logical subfile that executes when said logical 
subfile Is opened after receipt; and 

a control portion that controls loading and execution of another logical subfile. 

666. The method in Claim 664, wherein said method fiirther comprises step of fomilng said single 
virtual file; and said single virtual file comprising: 

a plurality of sequentially arrayed logical subfiles, each logical subfile including a header 
identifying a first subfile offset from a reference location in the single virtual file and containing a 
substantially complete story for a predetermined playback period or playback functionality; 

a currently executable portion with each said logical subfile that executes when said logical 
subfile is opened after receipt; and 

a control portion that controls loading and execution of another logical subfile. 

667. A computer program product for use in conjunction with a computer system, the computer 
program product comprising a computer readable storage medium and a computer program mechanism 
embedded therein, the computer program mechanism, comprising: 

a program module that controls the streaming of data over a communications link, the program 
module including instructions for: 

communicating a single virtual file having at least one executable portion over said 
communication link in a data stream at a data rate commensurate with available bandwidth and 
characteristics of said communication link, said physical file being received by said receiver as sequential 
portions of said single virtual file; 
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control of the opening of a later received portion of said virtual file being by a previously 
received portion of said virtual file such that a cun-ently executable portion of each of said received 
portions Is executed only upon the direction of an earlier executing received portion. 

5 668. The computer program as in Claim 667, wherein said program module further including 
instructions for forming said single virtual file. 

669. The computer program as in Claim 667, wherein said program module further includes 
instaictions for forming said single virtual file, and wherein said single virtual file comprises: comprising: 

10 (i) a plurality of sequentially arrayed logical subfiles, each logical subfile including a header identifying a 
. first subfile offset from a reference location in the single physical file and containing a substantially 
complete story for a predetermined playback period or playback functionality; (ii) a currently executable 
portion with each said logical subfile that executes when said logical subfile is opened after receipt; and 
(iii) a control portion that controls loading and execution of another logical subfile. 

15 

670. A system for streaming electronic content over a communication channel linking at least one 
sender and at least one receiver, said system comprising: 

a file maker within said sender for constructing a single virtual or physical file having predefined 
virtual file attributes; 

20 a detector within said sender detecting at least a bandwidth characteristic of said 

communication channel; 

a transmitter within said sender communicating said single virtual file over said communication 
link in a data stream at a data rate commensurate with available bandwidth and characteristics of said 
communication link, said virtual file being received by said receiver as sequential portions of said single 
25 subfiles; and 

a controller within said receiver controlling the opening of a later received subfile portion of said 
virtual file being by a previously received subfile portion such that a currently executable portion of each 
of said subfiles is executed upon the direction of an earlier executing subfile. 

30 671. The system in Claim 670, wherein said file maker includes a data structure builder for forming 
said single physical or virtual file; and said single physical or virtual file comprising: 

a plurality of sequentially arrayed logical subfiles, each logical subfile Including a header 
Identifying a first subfile offset from a reference location in the single physical file and containing a 
substantially complete story for a predetermined playback period or playback functionality; 

35 a currently executable portion wKh each said logical subfile that executes when said logical 

subfile Is opened after receipt; and 

a control portion that controls loading and execution of another logical subfile. 



40 



672. A method for cooperatively executing a plurality of code threads in a processor, said method 
comprising steps of: 
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(a) cx>mmunicating a plurality of cxwJe threads, including a first code thread and a second code 
thread, to a processor for execution; 

(b) setting a program counter for execution of said first code thread; 

(c) allocating ownership of said processor exclusively to execution of said first code thread and 
5 executing said first code thread until said first code thread completes execution, except stopping 

execution of said first code thread and yielding ownership of said processor by said first code thread 
during said execution to said second code thread upon the occurrence of a predetermined first code 
thread yield condition; 

(d) if execution of said first code thread has been stopped, then storing an indication that 
10 execution of said first code thread has been stopped, including a program counter value for said stopped 

first code thread, in a storage location; 

(e) setting said program counter for execution of said second code thread; 

(f) allocating ownership of said processor exclusively to execution of said second code thread 
and executing said second code thread until said second code thread completes execution, except 

15 stopping execution of said second code thread and yielding ownership of said processor by said second 
code thread to any other one of said plurality of code threads upon the occurrence of a predetermined 
second code thread yield condition; 

(g) reallocating ownership of said processor and re-executing said first dode thread according 
to predetermined processor ownership reallocation rules; 

20 (h) retrying execution of said yielded first code thread including setting sard program counter 

with said stored program counter for said stopped first code thread and re-executing said first code 
thread; and 

(i) repeating steps (b) through (g) for each of said plurality of code threads until each of said 
plurality of code threads has been executed. 

25 

673. The method in claim 672, wherein said predetermined first code thread yield condition 
comprises yielding after a predetermined time period of processor ownership. 

674. The method in claim 672, wherein said predetermined first code thread yield condition 
30 comprises yielding upon determining that a resource required for execution is constrained. 



675. The method in claim 672. wherein said predetermined first code thread yield condition and said 
second code thread yield conditions are each selected from the group consisting of: (i) yielding after a 
predetermined time period of ownership, or (11) yielding upon determining that a required resource is 

35 constrained, and a combination thereof. 

676. The method in claim 673, wherein said cooperative execution of said plurality of instruction 
threads is achieved by establishing said predetennined time period of ownership of at least selected ones 
of said plurality of threads as a instruction thread execution parameter communicated with said 

40 instruction thread. 
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677. A method for cooperatively executing a plurality of code threads in a processor, said method 
comprising steps of: 

sequentially executing a plurality of code threads until a predetemnined code thread yield 
5 condition is detected for a particular code thread; 

stopping execution of said particular code thread for which said thread yield condition was 

detected; 

storing an indication that execution of said particular code thread was stopped before 
completion in a memory storage location; 

10 resuming sequential execution of said plurality of code threads at the next sequential code 

thread following said particular code thread; and 

retrying execution of said particular code thread during said resumed sequential execution 
according to predetennlned rules for preempting a next sequential code thread and retrying execution of 
said particular code thread In preference to a next sequential code thread. 



678. The method in claim 677. wherein said step of retrying includes storing an Indicator for said 
preempted next code thread and retrieving said stored indicator for said particular code thread. 

679. The method in claim 678, wherein said stored indicator for said preempted next code thread 
20 comprises a program counter value for said preempted next code thread, and said stored Indicator for 

said particular code thread comprises a program counter value for said particular code thread that was 
yielded. 

680. The method in claim 679. further comprising the step of resuming said sequential execution of 
25 code threads after said particular code thread has been executed by retrieving said stored program 

counter value for said preempted next code thread. 

681 . The method in claim 677, wherein said code thread yield condition comprises yielding after a 
predetermined time period of processor ownership. 



682. The method in claim 677, wherein said code thread yield condition comprises yielding upon 
determining that a resource required for execution is constrained. 

683. The method in claim 677, wherein said predetermined first code thread yield condition and said 
35 second code thread yield conditions are each selected from the group consisting of: (i) yielding after a 

predetermined time period of ownership, or (ii) yielding upon determining that a required resource Is 
constrained, and a combination thereof. 



15 



30 
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684. The method in claim 677, wherein cooperative execution of said plurality of instruction threads 
is achieved by establishing said predetermined time period of ownership of at least selected ones of said « 
plurality of threads as a instruction thread execution parameter communicated with said instruction 
thread. 

6 

685. The method In claim 677 wherein cooperative execution of said program Instruction threads is 
achieved by detecting a resource constraint and returning a code to the instruction dispatcher to set the 
program counter to point back to the same retumed instruction before yielding to the next thread. 

10 686. A hardware architecture neutral exeicutable program structure for execution in a processor, 
said program structure comprising: 

a plurality of instruction threads selected from a library of possible Instruction threads; 

a plurality of data parameters integrated among at least some of said instruction threads and 
influencing execution of said instruction threads; and 

15 at least some of said selected instruction threads being adapted for cooperative execution with 

other of said instruction threads by yielding ownership of said processor upon the occurrence of a 
predetermined condition. 

687. The program structure in claim 686, wherein said instructions comprise operation codes 
20 representing commands executable in a processor. 

688. The program structure in claim 686, wherein said predetermined condition comprises said 
yielding instruction yielding after a predetenmined time period of ownership. 

25 689. The program structure in daim 686, wherein said predetermined condition comprises said 
yielding instruction yielding upon detemnining that a required resource is constrained. 

690. The program structure in claims 689, wherein said constrained resource is selected from the 
group consisting of a memory buffer, an input device, an output device, an input/output device, a digital 
30 audio processor, a display device, a communication link, a communication bus, a buffer, a data 
compression processor, a data decompression processor, a vertical refresh signal (so user does not see 
display screen refresh), a time limit being exceeded or not yet being exceeded, and combinations 
thereof. 

35 691. The program stmcture in claim 686. wherein said instmction thread is selected from the group 
of instruction threads that: perform a navigation; make a decision; scale a data item; decompress a data 
item; set a parameter; use a parameter, circulate a parameter; generate data; generate a parameter or 
instruction stream; parse a data item; format a data item; select a data item; test a data item; respond to 
an Input; send messages; receive messages; receive responses to messages; request file from a server 

40 or other source; store data; perform calculations; perform an animation; perform signal or image 
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processing; respond to a data or command from a user; send a message; request a file; request 
additional data in a data stream; request data and/or commands In a stream of data and/or commands; 
navigate; make a decision; scale; decompress; set, use, and calculate parameters; cause audio to-be 
rendered, cause video to be rendered generate other data and/or procedural streams; parse, format, and 
5 select text and other media elements such as images, graphics, and audio; respond to item selection by 
a story player user; request further files during streaming, fomnat XML (or XML extensions); fonr^at text; 
validate user input; perform calculations, simulations, animations, special effects, signal processing, run- 
time scaling and synchronization tasks; and combinations thereof. 

10 692. The program structure in claim 691 , wherein said data items are selected from the set of data 
items consisting of a digital image media data item, a digital audio media item, and combinations tiiereof. 

693. The program structure in claims 691 , wherein said response to a data or command prom a 
user comprises responding to a command or data generated by a user button press from a device 

1 5 incorporating said processor. 

694. The program structure in claim 691, wherein said requesting additional data and/or commands 
in a stream of data and/or commands comprises requesting additional ones of said instruction threads 
integrated with said data parameters. 

20 

695. The program structure in claim 686. wherein said cooperative execution is under programmatic 
control. 

696. The program structure in claim 686, wherein: 

25 said predetermined condition is either (i) yielding after a predetermined time period of 

ownership, or (ii) yielding upon determining that a required resource is constrained, or (ill) a combination 
of yielding after a predetermined time period of ownership, and yielding upon detemiining that a required 
resource Is constrained. 

30 697. The program structure in claim 696, wherein said resource being constrained comprises said 
resource being unavailable at the time access to said resource is required. 

698. The program structure in daim 696, wherein said a predetermined time period of ownership is 
established programmatically. 

35 

699. The program structure in claim 696, wherein said a predetermined time period of ownership is 
provided as a parameter within said message. 
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700. The program structure in claim 697, wherein said operation codes comprise integers and an 
association between said integer and an operation is identified by a table look up procedure, said 
integers providing a compact representation of said operations. 



5 701. The program structure in claim 696, further including an instruction thread retry attribute 
associated with at least some of said possible instruction threads, said retry attribute causing said 
processor to repeatedly retry to execute an instruction thread that has yielded ownership of said 
processor either (i) after a predetermined time period of ownership, (ii) after running all of the active 
threads until each has yielded the processor, or (iii) upon determining that a required resource is 
10 constrained. 

702. The program structure in daim 696, wherein: 

said instructions comprise operation codes representing commands executable In a processor; 

said predetermined condition comprises said yielding Instruction yielding after a predetermined 
1 5 time period of ownership, or said yielding instruction yielding upon determining that a required resource is 
constrained; 

said constrained resource is selected from the group consisting of a memory, an Input device, 
an output device, an input/output device, a digital audio processor, a display device, a communication 
link, a communication bus, a buffer, a data compression processor, a data decompression processor, a 
20 vertical refresh signal (so user does not see display screen refresh), a time limit being exceeded or not 
yet being exceeded, and combinations thereof; and 

said instruction thread is selected from the group of instruction threads that: perform a 
navigation; make a decision; scale a data item; decompress a data item; set a parameter; use a 
parameter; circulate a parameter; cause audio to be rendered; cause video to be rendered; generate 

25 data; generate a parameter or instmction stream; parse a data item; format a data item; select a data 
item; test a data item; respond to an input; send messages; receive messages; receive responses to 
messages; request file from a server or other source; store data; perfonn calculations; perform an 
animation; perform signal or image processing; respond to a data or command from a user; send a 
message; request a file; request additional data In a data stream; request data and/or commands in a 

30 stream of data and/or commands; navigate; make a decision; scale; decompress; set, use, and calculate 
parameters; generate other data and/or procedural streams; parse, format, and select text and other 
media elements such as images, graphics, and audio; respond to item selection by a story player user; 
request further files during streaming, format XML (or XML extensions); fonmat text; validate user Input; 
perform calculations, simulations, animations, special effects, signal processing, run-time scaling and 

35 synchronization tasks; and combinations thereof. 

703. A signal electronically encoding a message, wherein said signal comprises a message portion 
and a security portion. 



40 



704. A business method for generating and electronically distributing substantially optimized content 
to a targeted audience from author once content, the method comprising: 
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communicating a structured file, by a content provider to a content packager, a structured file 
based on a structured file format specification, the structured file representing a source of raw content 
including at least two descriptor types; 

providing means, by the content packager, for the content provider to identify at least a subset 
of the source of raw content to be represented in an e-mail message while always substantially 
preserving a predetemnined intent; 

establishing a connection to determine a set of characteristics of the receiving device, the 
receiving device being Identified by the content provider; and, 

adapting, by the content packager, the at least a subset of the source of raw content to the set 
of characteristics of the receiving device, the adapted content being substantially optimized to convey 
the predetermined intent of the e-mail message based on the set of characteristics. 

705. The business method of claim 704, wherein the at least two descriptor types are selected from 
the group consisting of: a disptayable or printable text description, a musical description, a spoken audio 
description, a Braille description, a pulsed light description, a smell or a taste descriptor (to be received 
and interpreted by another device), a tactile description, a pictorial description, a motion video 
description, buttons and editing fields and other transactional descriptions and combinations thereof. 

706. The business method of claim 704, after the step of adapting, further comprising a step of 
sending the.adapted content to the receiving device in an optimized e-mail. 

707. The business method of claim 704: 

wherein the predetermined intent is a multi-media representation of an electronic coupon that 
includes means for the receiver to accept or reject a promotion associated with the electronic coupon 
with a minimum of interaction with the content provider; and, 

wherein the means to accept the promotion places an order in a standard format to an order 
fulfillment sen/Ice that can best facilitate the fulfillment for the receiver at the time of the order placement 
or shortly thereafter. 

708. The business method of claim 704: 

wherein the predetenDined intent is a multimedia representation of a catalog comprising a 
characterization of at least one product; and, 

wherein the adapted content includes means for the receiver to select an item from the catalog 
with a minimum of interaction to place an order in a standard format and automatically communicate the 
order to an order fulfillment sen/ice that can best facilitate the fulfillment for the receiver at the time of 
order communication or shortly thereafter. 



709. The business method of daim 704, wherein the predetemiined intent is an invitation to an 
event; and, 
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wherein the adapted content Includes means for the receiver to respond to the invitation with a 
minimum of interaction, and whereby the response is automatically communicated to an event planner. 

710. The business method of dalm 704, wherein the predetermined intent is an on-line auction; and, 

5 wherein the adapted content comprises at least a subset of a bid fonn, a bid limit exceeded 

notification, and means for the receiver to respond to a bid limit exceeded notification with a minimum of 
interaction, such that the response is communicated to an auction coordinator without visiting a Web site 
associated with the on-line auction. 

10 711/ The business method of claim 704, wherein the predetermined Intent is a point of sale 
characterization of a product, the characterization selected from a group consisting of a looping 
demonstration and an advertisement 

71 2. The business method of claim 71 1 . wherein the receiver is selected from a group consisting of 
15 a microwave, a set top box, a beverage machine, a snack machine, a vending machine, a washing 

machine, a dishwasher, a refrigerator, a stereo, electronic picture frame, and a gas pump. 

713. A business method for generating and electronically distributing substantially optimized content 
to a targeted audience from author once content, the method comprising: 

20 communicating, by a content packager, an e-mail message to a receiver, the e-maiP message 
comprising information about a richer message, the e-mail message having a predetermined intent; and, 

if the receiver is configured to receive the richer message: 

(a) notifying the content packager, by the receiver, of a set of characteristics of the receiver; 

(b) formulating, by a content packager, the richer message based on the set of characteristics, 
25 the richer message substantially preserving the predetennined intent; and, 

(c) communicating the formulated richer message to the receiver. 

714. The business method of claim 713 wherein the receiver is not configured to receive the richer 
message, the method Hirther comprising a step of transmitting to the receiver a conventional format e- 

30 mall message that substantially preserves the predetennined intent 



■ 715. The business method of claim 714. wherein the receiver is not able to receive the richer 
message because of a reason selected from a group consisting of a network problem, a server problem, 
and the receiving device is not enabled to process the richer message. 

35 

716. A conventional e-mail message receiving device wherein the improvement comprises its ability 
to became a rich e-mail device that receives and is able to play content that is substantially optimized to 
the rich e-mail device's hardware configuration, network connection or con-esponding user preferences, 
the improvement being provided by receipt of a conventional e-mail message that includes instructions 
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or electronic links that respectfully instruct or Induce a recipient to follow the instructions or select the 
electronic link such that the conventional e-mail message receiving device becomes the rich e-mail 
device. 

717. The improvement of claim 716 wherein the process of turning a conventional email device into 
the rich e-mail device results in a system that then effectively hides farther conventional e-mails sent to 
the device in favor of more optimized rich messages which the device can render. 

718. The Improvement of claim 717 where the process of receiving rich emails breaks down due to 
software or hardware failure on the rich e-mail device, a network or a sender, and as a result of such a 
breakdown, providing the conventional e-mail message to the rich e-mail device and not the 
substantially optimized rich e-mail. 

719. The improvement of claim 718 where following a set of instructions provided in the 
conventional email for making the device rich email enabled results in starting a process that fixes the 
problem that had developed, and thereby re-enables the rich e-mail device to once again receive rich e- 
mail messages. 

720. A system comprising: 
an e-mail server, 

an e-mail receiving device connected to the server; and, 

a local proxy server coupled to the e-mail receiving device or coupled to the e-mail server to 
intercept a protocol between the e-mail receiving device and the e-mail server, the protocol being 
generated in response to an e-mail collection request from the e-mail receiving device, the loc^t proxy 
server being configured to determine if the e-mail receiving device can play rich e-mail messages, the 
local proxy server presenting a rich e-mail message to the receiving e-mail device in response to the e- 
matl collection request if the e-mail receiving device can play rich e-mail messages, the local proxy 
server presenting a conventional e-mait message to the receiving. device if the e-mail receiving device 
cannot play a rich e-mail message. 

721. A method for generating and distributing highly targeted rich-media electronically delivered e- 
mail messages, the method comprising: 

creating a source of raw content including at least two descriptor types selected from the group 
consisting of: a displayable or printable text description, a musical description, a spoken audio 
description, a braille description, a pulsed light description, a smell or a taste descriptor (to be received 
and interpreted by another device), a tactile description, and combinations thereof; 

parsing the source of raw content Into a procedural representation of the raw content, the 

procedural representation comprising media parts, computer program Instructions, parameters, and 
control information, the computer program instructions being used to display a set of elements 
comprising the coupon and a set of user interface controls; 
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determining a set of predetermined characteristics of a receiver, the predetermined 
characteristics comprising an indication pertaining to an ability of the receiver to receive and execute at 
feast a subset of the procedural representation; and 



characteristics of the receiver, such that the adapted representation preserves a predetermined intent of 
a message publisher regardless of a set of architectural attributes that correspond to the receiver; and, 

(it) communicating a second e-maii to the receiver, the second e-mail 
comprising the adapted representation; and, 

(iii) executing, by the receiver, the adapted representation. 

722. The method of claim 721 . before the step of determining, further comprising steps of: 

originating a first e-mail message comprising at least a subset of the at least two descriptor 
types and a header, the header indicating that content that is substantially optimized for the receiver is 
behind the first e-mail message; 

communicating the header to the receiver; 

intercepting a collection request from the receiver that indicates that a set of content 
corresponding to the first e-mail is being collected, the collection request being generated by a user In 
response to receipt of the header; and, 

wherein the step of determining is performed in response to the step of intercepting. 

723. The method of claim 721, wherein if the receiver is not able to execute the procedural 
representation, the method further comprises steps of: 

sending a second e-mail to the receiver, the second e-mail comprising the at least a subset of 
the at least two descriptor types, the second e-mail not comprising substantially optimized content; and, 

displaying, by the receiver, the second e-mail. 

724. The method of claim 721, further comprising a step of producing a source of contact data 
including a set of e-mail addresses that indicate a set of receivers for the coupons, the receiver being 
one of the set of receivers. 

725. The method of claim 721 , wherein the step of executing is performed either on-line or off-line. 

726. The method of claim 721 , in the step of determining and before the step of adapting, further 
comprising steps of: 

accommodating the procedural representation to a predetermined email format based on an 
identify of the receiver. 



(b) if the receiver Is able to receive and execute at least a subset of the procedural 



representation: 



(i) adapting the procedural representation to the predetermined 
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727. A method for generating and distributing highly targeted rich-media electronically delivered 
coupons, the method comprising: 

creating a source of raw content including at least two descriptor types selected from the group 
5 consisting of: a displayable or printable text description, a musical description, a spoken audio 
description, a braille description, a pulsed light description, a smell or a taste descriptor (to be received 
and interpreted by another device), a tactile description, and combinations thereof, 

parsing the source of raw content into a procedural representation of the raw content, the 
procedural representation comprising media parts, computer program instructions, parameters, and 
10 control information, the computer program instructions being used to display a set of elements 
comprising the coupon and a set of user interface controls; 

detennining a set of predetermined characteristics of a receiver, the predetermined 
characteristics comprising an indication pertaining to an ability of the receiver to receive and execute at 
least a subset of the procedural representation; and 

15 (b) if the receiver is able to receive and execute at least a subset of the procedural 

representation: 

(i) adapting the procedural representation to the predetemriined 
characteristics of the receiver; and, 

(ii) communicating a second e-mail to the receiver, the second e-mail 
20 comprising the adapted representation; and, 

010 executing, by the receiver, the adapted representation, whereby the 
receiver is able to accept or reject a promotion corresponding to the coupon by selecting a control of the 
set of graphical user interface controls without visiting a Web site corresponding with a publisher of the 
coupon. 

25 

728. The method of claim 727, before the step of detemiining, further comprising steps of: 

originating a first e-mail message comprising at least a subset of the at least two descriptor 
types and a header, the header Indicating that content that is substantially optimized for the receiver is 
behind the first e-mail message; 

30 communicating the header to the receiver; 

intercepting a collection request from the receiver that indicates that a set of content 
con-esponding to the first e-mail is being collected, the collection request being generated by a user in 
response to receipt of the header; and, 

wherein the step of determining is performed in response to the step of intercepting. 

35 

729. The method of claim 727, wherein if the receiver is not able to execute the procedural 
representation, the method further comprises steps of: 

sending a second e-mail to the receiver, the second e-mail comprising the at least a subset of 
the at least two descriptor types, the second e-mail not comprising substantially optimized content; and. 

40 displaying, by the receiver, the second e-mail. 
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330, The method of claim 727, further comprising a step of produdng a source of contact data 
including a set of e-mati addi*esses that indicate a set of receivers for the coupons, the receiver being 
one of the set of receivers. 



731 . The method of claim 727. wherein the source of raw content further comprises an address of 
an order fulfillment provider, the method further comprising steps of: 

accepting the promotion; 

In response to the step of accepting, communicating an order message to the order fulfillrhent 
1 0 provider, the order message not being communicated to the publisher. 

732. The method of claim 727. wherein the step of executing is performed either on-line or off-line. 

733. The method of claim 727. wherein a control of the set of controls corresponds to an inquiry for 
15 further information about the coupon, the method further comprising steps of: 

requesting additional information that pertains to the coupon by selecting the control; and, 

dispatching the request for additional infonmation to an entity best able to fulfill the information 

request. 

20 734. The method of claim 727, in the step of determining and before the step of adapting, further 
comprising steps of: 

accommodating the procedural representation to a predetenmined coupon format comprising a 
gift certificate coupon format. 

25 735. A method for generating and distributing rich-media electronically delivered invitations, the 
method comprising: 

creating a source of raw content including at least two descriptor types selected from the group 
consisting of: a displayable or printable text description, a musical description, a spoken audio 
description, a braille description, a pulsed light description, a smell or a taste descriptor (to be received 
30 and interpreted by another device), a tactile description, and combinations thereof, the source of raw 
content corresponding to an invitation to an event; 

parsing the source of raw content into a procedural representation of the raw content, the 
procedural representation comprising media parts, computer program Instructions, parameters, and 
control information, the computer program instructions being used to display a set of elements 
35 comprising the coupon and a set of user interface controls; 

determining a set of predetemnined characteristics of a receiver, the predetemiined 
characteristics comprising an indication pertaining to an ability of the receiver to receive and execute at 
least a subset of the procedural representation; and 
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(b) if the receiver is able to receive and execute at least a subset of the procedural 

representation: 

(i) adapting the procedural representation to the predetermined 
characteristics of the receiver; and. 

5 (ID communicating a second e-mail to the receiver, the second e-mail 

comprising the adapted representation; and, 

(iii) executing, by the receiver, the adapted representation, whereby the 
receiver is able to accept or decline the invitation by selecting a control of the set of graphical user 
interface controls, 

10 

736. The method of claim 735, before the step of determining, further comprising steps of: 

originating a first e-mail message comprising at least a subset of the at least two descriptor 
types and a header, the header indicating that content that is substantially optimized for the receiver is 
behind the first e-mail message; 

1 5 communicating the header to the receiver; 

Intercepting a collection request from the receiver that indicates that a set of content 
corresponding to the first e-mail is being collected, the collection request being generated by a user in 
response to receipt of the header; and, 

wherein the step of determining is perfonned in response to the step of intercepting. 

20 

737. The method of claim 735, wherein if the receiver is not able to execute the procedural 
representation, the method further comprises steps of: 

sending a second e-mail to the receiver, the second e-mail comprising the at least a subset of 
the at least two descriptor types, the second e-mail not comprising substantially optimized content; and, 

25 displaying, by the receiver, the second e-mail. 



738 The method of claim 735, further comprising a step of producing a source of guest data 
including a set of e-mail addresses that indicate a set of receivers for the invitation, the receiver being 
one of the set of receivers. 

30 

739. The method of claim 735, wherein the step of executing is perfomied either on-line or off-line. 

740. The method of claim 735, wherein a control of the set of controls con^esponds to an inquiry for 
further information about the invitation, the method further comprising steps of: 

35 requesting additional Information that pertains to the invitation by selecting the control; and, 

dispatching the request for additional information to an entity. best able to fulfill the information 

request. 
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741. The method of daim 721, in the step of determining and before the step of adapting, further 
comprising steps of: 

accommodating the procedural representation to a predetermined Invitation format selected 
from a group consisting of a party Invitation format, a scheduled meeting format, and a seminar fornnat 

742. A method for generating and distributing targeted richnrnedta electronically delivered 
messages with fulfillment automation, the method comprising: 

providing a source of at least one multi-media characterization of at least one product or 
accompanying the characterization of the at least one product, the multf-media representation including 
at least two descriptor types selected from the group consisting of: a displayable or printable text 
description, a musical description, a spoken audio description, a braille description, a pulsed light 
description, a smell or a taste descriptor (to be received and Interpreted by another device), a tactile 
description, and combinations thereof, 

parsing the source of at least one multi-media characterization into a procedural representation 
of the raw content, the procedural representation comprising media parts, computer program 
instmctions, parameters, and control information, the computer program instructions being used to 
display a set of elements comprising the coupon and a set of user interface controls; 

detemiining a set of predetermined characteristics of a receiver, the predetermined 
characteristics comprising an Indication pertaining to an ability of the receiver to receive and execute at 
least a subset of the procedural representation; and 

(a) if the receiver Is able to receive and execute at least a subset of the procedural 

representation: 

0) adapting the procedural representation to the predetermined 
characteristics of the receiver; and. 

(ii) communicating a second e-mail to the receiver, the second e-mail 
comprising the adapted representation; and, 

(ill) executing, by the receh/er, the adapted representation, the adapted 
representation being a catalog of items, whereby the receiver is able to select Items from the catalog 
with a minimum of interaction to place an order in a standard format and automatically communicate the 
order to an order fulfillment service that can best fadlitate the fulfillment for the receiver at the time of 
order communication or shortly thereafter 

743. The method of claim 22, before the step of detemiining, further comprising steps of: 

originating a first e-mail message comprising at least a subset of the at least two descriptor 
types and a header, the header indicating that content that is substantially optimized for the receiver is 
behind the first e-mail message: 

communicating the header to the receiver; 

intercepting a collection request from the receiver that Indicates that a set of content 
corresponding to the first e-mail is being collected, the collection request being generated by a user in 
response to receipt of the header; and, 
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wherein the step of determining is performed in response to the step of intercepting. 

744. The method of claim 742, wherein if the receiver is not able to execute the procedural 
representation, the method further comprises steps of. 

sending a second e-mail to the receiver, the second e-mail comprising the at least a subset of 
the at least two descriptor types, the second e-mail not comprising substantially optimized content; and, 

displaying, by the receiver* the second e-mail. 

745. The method of claim 742, further comprising a step of producing a source of contact data 
including a set of e-mail addresses that indicate a set of receivers for the coupons, the receiver being 
one of the set of receivers. 

746. The method of daim 742, wherein the step of executing is performed either on-line or off-line. 

747. The method of claim 742, wherein a control of the set of controls corresponds to an inquiry for 
further Information about an item in the catalog, the method further comprising steps of: 

requesting additional information that pertains to the item in the catalog by selecting the 
control; and. 

dispatching the request for additional information to an entity best able to fulfill the infonnatlon 

request. 

748. The method of claim 721, in the step of detenmining and before the step of adapting, further 
comprising steps of: 

accommodating the procedural representation to a predetermined catalog format based on a 
status of the recipient, the status selected from a group consisting of a retailer status, an original 
equipment manufacturer status, and a wholesaler status. 

749. An operating model for generating and distributing rich content messages to people with 
physical disabilities, the operating model comprising: 

a source of a set of raw content that corresponds to an intention of a publisher of messages, 
the source of raw content including at least two descriptor types selected from the group consisting of: a 
displayable or printable text description, a musical description, a spoken audio description, a braille 
description, a pulsed light description, a smell or a taste descriptor (to be received and interpreted by 
another device), a tactile description, and combinations thereof; 

a server coupled to said raw content source and a contact data source; 

a composition engine coupled to said server and receiving said raw content and said contact 
information, the composition engine parsing said raw content Into a procedural representation of the raw 
content, the composition engine communicating an e-mail with a story header to a receiver, the story 
header indicating that the at least two descriptor types conrespond to the email; 
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a client executing at said receiver and adapted to: (i) receive the email; 00 interrogate said 
receiver to determine predetermined characteristics of said receiver pertaining to an ability to receive, 
process or store, and display data that may be communicated by said server to said receiven and (iii) 
communicate said predetennined characteristics to said server, 

a story generator coupled to said server receiving said predetermined characteristics, the story 
generator generating a message from the procedural representation such that it is adapted to the 
predetermined characteristics of said receiver prior to communicating the message to said receiver, 
such that the publisher's intention is preserved in the message regardless of a set of architectural 
attributes of the receiver, the story generator communicating the message to the receiver, and, 

a player coupled to the receiver, the player being adapted to play the message for the receiver. 

750. The operating model of claim 749, wherein: 

(i) the two descriptor types correspond to a characterization of at least one product; 

(ii) the rrressage is a composite multi-media catalog comprising descriptions of the at least one 

product; 

(Iii) the message includes graphical user interface controls that are displayed when the 
message is played, the recipient being able to interface with the controls to place an order in a standard 
format; and, 

(iv) the player further creates the order and places the order in an email outbox on the client 

751 . The operating model of claim 749, wherein: 

(i) the raw content encapsulates an idea to be communicated to the receiver, the at least two 
descriptor types representing a set of alternative expressions of the idea, each alternative expression 
corresponding to a different one of a plurality of possible outputs of the server, each alternative 
expression corresponding to a different of a plurality of possible inputs into the client; and, 

(ii) the predetermined characteristics correspond to at least a subset of the alternate 
expressions that are to be communicated to the client for presenting the idea to the recipient. 

752. The operating model of claim 749, wherein: 

(i) the raw content encapsulates an idea to be communicated to the receiver, the at least two 
descriptor types representing a set of altemative expressions of the idea, each alternative expression 
corresponding to a different one of a plurality of possible outputs of the server, each alternative 
expression corresponding to a different of a plurality of possible inputs into the client; and. 

(ii) the predetermined characteristics correspond to at least a subset of the altemate 
expressions that are to be communicated to the client for presenting the Idea to the recipient; 

(iii) the predetermined characteristics further comprise a set of preferences of the receiver; 

(iv) each the possible inputs correspond to the set of preferences, each of the possible Inputs 
intended to stimulate a different sense of the receiver; 
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(v) the different sense of the receiver is selected from the group consisting of sight, hearing, 
touch, and combinations thereof; and 

(vl) said receiver is a sensory challenged user selected from a group consisting of a sight 
impaired user, a hearing impaired user, and a sight and hearing impaired user. 

5 



753. The operating model of claim 751 . wherein: 

(i) the predetermined characteristics further comprise a set of preferences of the receiver; and» 

10 (il) each the possible inputs correspond to the set of preferences, each of the possible inputs 

intended to stimulate a different sense of the receiver. 

754. The operating model in Claim 753, wherein the different sense of the receiver is selected from 
the group consisting of sight, hearing, touch, and combinations thereof. 

15 

755. The operating model in Claim 751, wherein said client possible outputs include: a display 
device for presenting symbols, text, graphics, and pictures sensible by a users eyes; an audio output 
device for presenting a sound sensible by a users ears; a tactile output device sensible by a users touch 
at or through a sl<in surface; an electronic signal for coupling to a user skin sur^ce mounted or internally 

20 implanted sensory transducing device adapted to produce a sensory experience for said user. 

756. The operating model in Claim 749, wherein said predetermined characteristics are selected 
firom the group consisting of: client device hardware characteristics, client device software device 
characteristics, client device fimnware characteristics, client device programmatic characteristics, client 

25 device data characteristics, network connection characteristics, and combinations thereof. 

757. The operating model in Claim 751 , wherein said tactile output device generates a braille tactile 
sensible Indicia. 

30 758. The operating model in Claim 755, wherein said plurality of alternative expressions for said 
idea includes symbolic expression. 

759. The operating model in Claim 751, wherein said plurality of alternative expressions for said 
kiea includes a text expression for each content item including a description of all audio and graphical 
35 content. 



760. The operating model in Claim 753, wherein said receiver is a sensory challenged user selected 
from a group consisting of a sight impaired user, a hearing impaired user, and a sight and hearing 
impaired user. 
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761. The operating model of claim 756, wherein the story generator includes an override system 
that such that the storyteller generates the message by overriding at least a subset of the user 
preferences based on the limitations of the hardware capabilities. 

5 

762. The operating model of claim 749, further comprising a source of contact data identifying the 
receiver for the at least two descriptor types. 

763. An electronic message packaging and transmittal method; said method comprising the steps 
10 of: 

creating a data set on a server having at least first and second expressions for a single idea, 
the data set corresponding to a predetermined intent of a publisher of messages; 

sending a first email to a client device, the first e-mail Including a header identifying the data 

set; and, 

1 5 Intercepting an email collection request from the client device; 

in response to the step of intercepting: 

(a) determining a set of attributes of said client device over a communication link; 

(b) selecting at least one of said first and second expressions based on said 
detemiined attributes; 

20 (c) packaging an electronic message into a message package comprising said single 

idea using said selected expression, such that the predetermined intent of the publisher is preserved in 
the message package regardless of a set of architectural attributes of the client; and 

(d) communicating said electronic message to said client. 

25 764. The method In Claim 763, wherein said selection of one of said first and second expressions 
selects only one of said expressions. 

765. The method In Claim 763, wherein said selection of one of said first and second expressions 
selects both of said expressions when said identified attributes Indicates that said client and said 

30 communication link are adapted to utilize both said expressions. 

766. The method in Claim 763. wherein said set of attributes of said client are selected from the 
group consisting of: display type, display size, audio playback capabilities, and memory size, arid 
combinations thereof. 

35 

767. The method in Claim 763, wherein said set of attributes of said communication link are 
selected from the group consisting of: nominal bandwidth, bandwidth measured within a time interval 
just prior to said communication, latency, and combinations thereof. 
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768. The method in Claim 763, wherein said set of attributes further comprise preferences of a user 
associated with said client, said user preferences selected from the group consisting of: a language 
preference, . a high-graphics or low-graphics level content preference; a monochrome or color 
preference, an audio preference, a video preference, a message size limit, cultural preferences, and 

5 combinations thereof. 

769. The method in Claim 763, wherein said data set comprises a multi-media data set having text- 
content expressions, audio-content expressions, video-content expressions, and audio-video content 
expressions. 

10 

770. The method in Claim 763. wherein said data set comprises text-content and audio-content 
expressions in a plurality of languages. 

771. The method in Claim 763, wherein said message package is substantially optimized to provide 
15 information content that can be used by said client that can be communicated over said communication 

link in a timely manner. 

772. The method of Claim 763, wherein said communication link comprises the intemet. 

20 773. The method of Claim 763, wherein said communication link comprises a direct wired or optical 
communication link. 

774. The method of Claim 763, wherein said communication link comprises a network connection. 

25 775. The method of Claim 763, wherein said communication link comprises a wireless connection. 

776. The method in claim 763, wherein said packaging of said electronic message is delayed until 
after the time of said step of detennining; 

30 777, The method in claim 763, wherein: 

said data set further includes a plurality of ideas, at least some of said plurality of ideas having 
a plurality of altemative expressions; 

said step of selecting further comprising selecting some of said alternative expressions for 
each of said plurality of ideas based on said determined attributes: and 

35 said packaging including packaging said electronic message to include said plurality of ideas 

using said selected alternative expressions. 



778. The method in Claim 763, wherein said predetermined rules include user preferences. 
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779. The method in Claim 763. further comprising the step of overriding said selection of one of said 
first and second expressions based on said Identified attributes by applying user preferences. 

5 780. The method in Claim 763. further comprising the step of overriding said selection of one of said 
first and second expressions based on said Identified attributes by applying user preferences, where 
said preference override applies weightings to a set of criteria, including applying a relatively low 
weighting to master selection criteria and a relatively higher weighting to user preference criteria. 

10 781. The method in Claim 763, vrtierein said set of attributes comprise user preferences selected 
from the group consisting of: a language preference, a high-graphics or tow-graphics level content 
preference, a monochrome or color preference, an audio preference, a video preference, a cultural 
preference, a message size limit preference, and combinations thereof. 

15 782. The method in Claim 763, wherein said set of attributes comprise user preferences, and said 
user preferences are applied to said selection and said packaging even if they represent a sub-optimal 
message package. 

783. The method in Claim 763, wherein one of said first and second expressions comprises an 
20 expression that can be received and interpreted by legacy email clients, including legacy email clients 

selected from the group consisting of: Mk:rosoft Outlook Express, Lotus Notes, Eudora. and AOL mail 
interfaces. 

784. The method in Claim 763, wherein said legacy email comprises email structured in accordance 
25 a protocol selected from a protocol group consisting of SMTP and ESMTP protocols 

785. A method for communicating an idea to a user Including to a sensory challenged user, said 
method comprising the steps of: 

identifying an idea to be communicated to a user; 

30 collecting and storing a plurality of alternative expressions for said Idea, each said alternative 

expression being associated with a different one of a plurality of possible outputs generated by a client 
device, each said output intended to stimulate a different sense of a user; 

determining, before the step of composing, a set of preferences of the user; 

composing an electronic content encompassing said idea from selected ones of said plurality of 
35 alternative expressions that is adapted to the set of user preferences; and. 

communicating said electronic content to said client device for presentation to said user. 



786. The method of claim 785. further comprising, after the step of communicating, steps of 
selecting a particular output to generate from among said plurality of possible outputs; and 
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executing instructions in said client device to generate said selected output so as to stimulate a 
particular one of said user senses. 

787. The method In Claim 785, wherein said user senses are selected from the group consisting of 
5 sight, hearing, touch, and combinations thereof. 

788. The method in Claim 785, wherein said client device possible outputs include: a display device 
for presenting symbols, text, graphics, and pictures sensible by a users eyes; an audio output device for 
presenting a sound sensible by a users ears; a tadile output device sensible by a users touch at or 

10 through a skin surfoce; an electronic signal for coupling to a user skin surface mounted or internally 
Implanted sensory transducing device adapted to produce a sensory experience for said user. 

789. The method in Claim 786, wherein said step of selecting comprises the step of being selected 
by said user when said content is received. 

15 

790. The method in Claim 786, wherein said step of selecting comprises the step of 
being selected in response to an indicator received with said content. 

791. The method in Claim 786, wherein said step of selecting comprises the step of being selected 
20 in response to user preferences identified prior to receipt of said content. 

792. The method in Claim 786, wherein said step of selecting comprises the step of being selected 
fn response to client device characteristics. 

25 793. The method in Claim 792, wherein said client device characteristics are selected from the 

group consisting of: client device hardware characteristics, client device software device characteristics, 
client device firmware characteristics, client device programmatic characteristics, client device data 
characteristics, and combinations thereof. 

30 794. The method in Claim 785, wherein said tactile output device generates a braille tactilely 
sensible indicia. 

795. The method In Claim 785, wherein said plurality of altemative expressions for said idea 
includes symbolic expression. 

35 



796. The method in Claim 785, wherein said plurality of altemative expressions for said idea 
includes a text expression for each content item including a description of all audio and graphical 
content. 
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797. The method in Claim 785, wherein said sensory challenged user is a sight Impaired user, a 
hearing Impaired user, a sight and hearing impaired user. 

5 798. A computerized method for distributing author once, play anywhere rich content to a target 
device, the method comprising steps of: 

providing a set of content that can be used to communicate an intent the content comprising 
one or more of multimedia content, and message parameters; 

receiving a set of contact data comprising a destination address of a target device; 

1 0 using the set of contact data, establishing a connection with the targeted device; 

determining, after the step of establishing and before the step of generating, a set of 
characteristics of the target device; 

generating a message that comprises electronic content from at least a subset of the set of 
content, the message being adapted to the set of characteristics; 

1 5 communicating the message to the device; and, 

playing the message on the device for the user to evaluate. 

799. The method of claim 798. wherein the step of determining, the set of characteristics comprises 
characteristics selected from a group consisting of: a set of hardware capabilities of the targeted device, 

20 a set of network connection characteristics, and a set of user preferences. 

800. The method of claim 798, wherein the step of providing, the intent is selected from a group 
consisting of a targeted promotion ( e-coupon), a party invitation, and a custom parts catalog. 

25 801. The method of claim 798, wherein the step of providing, the target device is selected from a 
group consisting of a general purpose computer, a personal digital assistant, a telephone, a vending 
machine, a digital camera, a speech recognition device, and a speech rendering device. 

802. The method of claim 800, wherein the step of providing, the group further comprises a product 
30 on display in a retail outlet, a set-top box, a movie marque, an internet e-mail appliance, a billboard, a 
microwave oven, and a gas pump. 

803- The method of claim 798, wherein the step of providing, the set of multimedia content 
comprises one or more combinations of content selected from a group of text, motion video, a binary 
35 image, speech, HTML, an automated script, and audio. 



804. The method of claim 798, wherein step of providing, the set of content further comprise content 
in an XML format 
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805. The step of claim 798, wherein the step of providing, set of preferences Is selected from a 
group consisting of language, a set of preset GUI element selection criteria, a set of disabilities selected 
from a group consisting of seeing impaired, hearing impaired, mobility impaired, and leaming impaired. 

5 

806. The method of claim 798, wherein the step of playing, the message can be played from the 
target device when the target device is on-line or offline. 

807. The method of claim 798, wherein the step of playing, the message is selected from a group 
10 consisting of a web page embedded object, as an e-mail attachment, a set of data in a ROM connected 

to the target device, a set of data streamed from a sender, an independent application, a MIME type, an 
ActiveX component, a plug In, and an e-mail client. 

808. The method of daim 798, wherein the step of playing further comprises steps of: 

1 5 responding to a prompt generated by the step of playing; and, 

sending the response to an entity selected from a group consisting of an order fulfillment entity, 
another email client device, and the message generating entity. 

809. The method of claim 808. wherein the step of playing, the response is sent to an email outbox 
20 for later distribution to the entity. 

810. A method for cooperatively executing a plurality of code threads in a processor, said method 
comprising steps of: 

(a) communicating a plurality of code threads, including a first code thread and a second code 
25 thread, to a processor for execution; 

(b) setting a program counter for execution of said first code thread; 

(c) allocating ownership of said processor exclusively to execution of said first code thread and 
executing said first code thread until said first code thread completes execution, except stopping 
execution of said first code thread and yielding ownership of said processor by said first code thread 

30 during said execution to said second code thread upon the occurrence of a predetermined first code 
thread yield condition; 

(d) if execution of said first code thread has been stopped, then storing an indication that 
execution of said first code thread has been stopped. Including a program counter value for said 
stopped first code thread, In a storage location; 

35 (e) setting said program counter for execution of said second code thread; 

(f) allocating ownership of said processor exclusively to execution of said second code thread 
and executing said second code thread until said second code thread completes execution, except 
stopping execution of said second code thread and yielding ownership of said processor by said second 
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code thread to any other one of said plurality of code threads upon the occurrence of a predetermined 
second code thread yield condition; 

(g) realfccating ownership of said processor and re-executing said first code thread according 
to predetermined processor ownership reallocation rules; 

(h) retrying execution of said yielded first code thread including setting said program counter 
with said stored program counter for said stopped first code thread and re-executing said first code 
thread; and 

(i) repeating steps (b) through (g) for each of said plurality of code threads until each of said 
plurality of code threads has been executed. 

811. The method In claim 810, wherein said predetermined first code thread yield condition comprises 
yielding after a predetermined time period of processor ownership. 

812. The method in claim 810, wherein said predetermined first code thread yield condition comprises 
yielding upon determining that a resource required for execution is constrained. 

813. The method in claim 810, wherein said predetermined first code thread yield condition and said 
second code thread yield conditions are each selected from the group consisting of: (i) yielding after a 
predetemnlned time period of ownership, or (10 yielding upon detemnining that a required resource is 
constrained, and a combination thereof. 

814. The method in claim 811 wherein said cooperative execution of said plurality of instruction threads 
is achieved by establishing said predetemiined time period of ownership of at least selected ones of 
said plurality of threads as a instruction thread execution parameter communicated with said instruction 
thread. 

815. A method for cooperatively executing a plurality of code threads in a processor, said method 
comprising steps of: 

sequentially executing a plurality of code threads until a predetermined code thread yield 
condition is detected for a particular code thread; 

stopping execution of said particular code thread for which said thread yield condition was 
detected; 

storing an indication that execution of said particular code thread was stopped before 
completion in a memory storage location; 

resuming sequential execution of said plurality of code threads at the next sequential code 
thread following said particular code thread; 

retrying execution of said pari:icular code thread during said resumed sequential execution 
according to predetenmined rules for preempting a next sequential code thread and retrying execution of 
said particular code thread in.preference to a next sequential code thread. 
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816. The method in claim 815, wherein said step of retrying includes storing an indicator for said 
preempted next code thread and retrieving said stored indicator for said particular code thread. 

817. The method in daim 816, wherein said stored indicator for said preempted next code thread 
comprises a program counter value for said preempted next code thread, and said stored indicator for 
said particular code thread comprises a program counter value for said particular code thread that was 
yielded. 

818. The method in claim 817, further comprising the step of resuming said sequential execution of 
code threads after said particular code thread has been executed by retrieving said stored program 
counter value for said preempted next code thread. 

819. The method in claim 816, wherein said code thread yield condition comprises yielding after a 
predetermined time period of processor ownership. 

820. The method in claim 815, wherein said code thread yield condition comprises yielding upon 
determining that a resource required for execution is constrained. 

821. The method in claim 815, wherein said predetenmined first code thread yield condition and said 
second code thread yield conditions are each selected from the group consisting of: (i) yielding after a 
predetermined time period of ownership, or (ii) yielding upon determining that a required resource is 
constrained, and a combination thereof. 

822. The method in claim 815, wherein cooperative execution of said plurality of instruction threads is 
achieved by establishing said predetermined time period of ownership of at least selected ones of said 
plurality of threads as a instruction thread execution parameter communicated with said instmaion 
thread. 

823. The method in claim 815, wherein cooperative execution of said program instruction threads is 
achieved by detecting a resource constraint and returning a code to the instruction dispatcher to set the 
program counter to point bacic to the same returned instruction before yielding to the next thread. 

824. A hardware architecture neutral executable program structure for execution in a processor, 
said prograin structure comprising: 

a plurality of instruction threads selected from a library of possible instruction threads; 

a plurality of data parameters integrated among at least some of said instruction threads and 
influencing execution of said instruction threads; and 
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at least some of said selected instruction threads being adapted for cooperative execution with 
other of said instruction threads by yielding ownership of said processor upon the occunrence of a 
predetermined condition. 



5 825. The program structure in claim 824, wherein said instructions comprise operation codes 
representing commands executable in a processor. 

826. The program structure in daim 824, wherein said predetenmined condition comprises said 
yielding instruction yielding after a predetermined time period of ownership. 

10 

827. The program structure in claim 824, wherein said predetermined condition comprises said 
yielding instruction yielding upon determining that a required resource is constrained. 

828. The program structure in claims 827, wherein said constrained resource is selected from the 
15 group consisting of a memory buffer, an input device, an output device, an input/output device, a digital 

audio processor, a display device, a communication Wvk, a communication bus. a buffer, a data 
compression processor, a data decompression processor, a vertical refi-esh signal (so user does not see 
display screen refresh), a time limit being exceeded or not yet being exceeded, and combinations 
thereof. 

20 

829. The program structure in daim 824, wherein said Instruction thread is selected from the group 
of instruction threads that: perform a navigation; make a decision; scale a data item; decompress a data 
item; set a parameter, use a parameter; circulate a parameter; generate data; generate a parameter or 
instruction stream; parse a data item; fbmnat a data item; select a data item; test a data item; respond to 

25 an Input; send messages; receive messages; receive responses to messages; request file from a sen/er 
or other source; store data; perform calculations; perform an animation; perform signal or image 
processing; respond to a data or command from a user; send a message; request a file; request 
additional data in a data stream; request data and/or commands in a stream of data and/or commands; 
navigate; make a dedslon; scale; decompress; set, use. and calculate parameters; cause audio to be 

30 rendered, cause video to be rendered generate other data and/or procedural streams; parse, fomiat, 
and select text and other media elements such as images, graphics, and audio; respond to item 
selection by a story player user; request further files during streaming, format XML (or XML extensions); 
format text; validate user input; perfomi calculations, simulations, animations, special effects, signal 
processing, run-time scaling and synchronization tasks; and combinations thereof. 

35 

830. The program structure in claim 829. wherein said data items are selected from the set of data 
items consisting of a digital image media data item, a digital audio media item, and combinations 
thereof. 
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831. The program structure in claims 829, wherein said response to a data or command prom a 
user comprises responding to a command or data generated by a user button press from a device 
incorporaf ing said processor. 

5 832. The program structure in claim 829, wherein said requesting additional data and/or commands 
in a stream of data and/or commands comprises requesting additional ones of said Instruction threads 
integrated with said data parameters. 

833. The program structure in claim 824, wherein said cooperative execution is under programmatic 
10 control. 

834. The program structure in claim 824, wherein: 

said predetemfiined condition is either (i) yielding after a predetermined time period of 
ownership, or (ii) yielding upon determining that a required resource is constrained, or (iii) a combination 
15 of yielding after a predetermined time period of ownership, and yielding upon determining that a required 
resource is constrained. 

835. The program structure in claim 834 wherein said resource being constrained comprises said 
resource being unavailable at the time access to said resource is required. 

20 

836. The program structure In claim 834, wherein said a predetermined time period of ownership is 
established programmat/cally. 

837. The program structure in claim 834, wherein said a predetemnined time period of ownership is 
25 provided as a parameter within said message. 

838. The program structure in claim 835, wherein said operation codes comprise integers and an 
association between said integer and an operation is identified by a table look up procedure, said 
integers providing a compact representation of said operations. 

30 

839. The program structure in claim 824, further including an instruction thread retry attribute 
associated with at least some of said possible instruction threads, said retry attribute causing said 
processor to repeatedly retry to execute an instruction thread that has yielded ownership of said 
processor either (i) after a predetermined time period of ownership, (ii) after running all of the active 

35 threads until each has yielded the processor, or (iii) upon determining that a required resource is 
constrained. 
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The program structure in claim 824. wherein: 

said instmctions comprise operation codes representing commands executable in a processor; 
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said predetermined condition comprises said yiefding instruction yiefding after a predetermined 
time period of ownership, or said yielding instruction yielding upon determining that a required resource 



said constrained resource is selected from the group consisting of a memory, an input device, 
an output device, an input/output device, a digital audio processor, a display device, a communication 
linic, a communication bus, a buffer, a data compression processor, a data decompression processor, a 
vertical refresh signal (so user does not see display screen refresh), a time limit being exceeded or not 
yet being exceeded, and combinations thereof; and 

said instruction thread is selected from the group of instruction threads that: perform a 
navigation; make a decision; scale a data item; decompress a data item; set a parameter; use a 
parameter; circulate a parameter; cause audio to be rendered; cause video to be rendered; generate 
data; generate a parameter or instruction stream; parse a data item; format a data item; select a data 
item; test a data item; respond to an input; send messages; receive messages; receive responses to 
messages; request file from a server or other source; store data; perfonn calculations; perform an 
animation; perform signal or image processing; respond to a data or command from a user, send a 
message; request a file; request additional data in a data stream; request data and/or commands in a 
stream of data and/or commands; navigate; make a decision; scale; decompress; set, use, and 
calculate parameters; generate other data and/or procedural streams; parse, fomriat, and select text and 
other media elements such as images, graphics, and audio; respond to item selection by a story player 
user; request further files during streaming, format XML (or XML extensions); format text; validate user 
input; perform calculations, simulations, animations, special effects, signal processing, run-time scaling 
and synchronization tasks; and combinations thereof. 



is constrained; 
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APPENDIX I - Playback Engine Partial Exemplary Code 



Although aspects of the Invention have been described in considerable detaii. Appendix I 
provides a sample of exemplary code so that some additional insight may be gained as to its 
5 structure and operation. 



r 

These are example functions from a Story playback engine which illustrate one possible softv\/are 
implementation of a remarkably lightweight Story operating environment. 

10 

These functions illustrate most all the functionality needed for the story multi-threading, media 
synchronization and runtime model for Story playback. 

The first two functions perform the functions of Implementing a round-robin, multi-threaded operating 
15 system. 

The second two functions illustrate functions that implement actual Story op-code execution. 
V 

20 

r 

StoryPlaybackCycle should be called continually in a loop on a single host operating system thread. 
This functions executes all the threads once in order, until each thread gives up control, then returns. 

25 

Possible return code #defmes can be found in pStory.h and end with the suffix, "_RETURN_COpE" 

When the return value is negative, then execution of the calling loop should end. 
V 

30 S32 FUNC_PREFIX StoryPlaybackCycle (void) 
{ 

SU32 u32_NumberOfActiveThreads=0; 

SU32 u32_NumberOfThreadsLeft=p.c.u32_NumberOflnitiali2edThreads; r 
35 number of initialized threads */ 

p.c.u32_StoryPlaybackCycleNumber++; 
p.c.u32_StoryThreadlndex=0; 
while (u32_NumberOfThreadsLeft) 
{ 

40 p.c.context=p.c.contexts[p.c.u32_StoryThreadlndex++]; 

if (p.c.context.u32 Statel=RUNNING_CONTEXT_STATE) 
{ 

45 u32_NumberOfThreadsLeft-=(p.c.context.u32_State!=UNINITIALIZED_CONTEXT STATE 

); 

continue; r this thread is not running so do next thread V 

} 

u32_NumberOfActiveThreads++; 

50 

if (InputAvailableO) 
{ 

do 
{ 

55 ProcesslnstructionQ; 
} while 
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(p.c.s32_ProcesslnstructionReturnCode==SUCCESS_RETURN_CODE); 
if (p.c.s32_ProcesslnstructionReturnCode<0) 
{ 

break; 

5 } 
} 

p.cxontextsIp.c.u32_StofyThreadlndex-1]=p.c.context; 
u32 NumberOfThreadsLeft-; 

10 } 

if (u32_NumberOfActiveThreads==0) 
{ 

p.c.s32_ProcesslnstructionReturnCode=NO_ACTIVE THREADS^RETURN^CODE; 

} 

15 return(p.c.s32_ProcessInstructionReturnCode); 
} 

r 

This function fetches an opcode from the Input buffer and calls the function that implements the 
20 opcode. It also handles instruction retry by: 

Setting the default status returned from the opcode function to 
SUCCESS^RETURN^CODE 
Storing the pointer to the opcode 
25 Calling the function for the opcode 

Inspecting the return code when the opcode function returns 

If the return code is RETRYJNSTRUCTlON,RETURN_CODEthen the instruction pointer is reset to 
point back to the opcode by restoring the saved value. 

30 .*/ 

void FUNC_PREFIX Processlnstruction(void) 
{ 

PSU32 pu32_SavedNextlnput; 

pu32__SavedNextInput=p.c.context.inputBufferlnfo,pu32_Nextlnput; 
35 p.c.u32_CurrentOpcode=GetSU32_From[nputO; 

p.c.s32_ProcesslnstructionReturnCode=SUCCESS_RETURN_CODE; 
(controlFunctionAddressArray[p.c.u32_CurrentOpcode])0; 
. if (p.c.s32_Process!nstructionReturnCode==RETRYJNSTRUCTION_RETURN_CODE) 
{ 

40 //Instruction could not proceed, so try again next time 

px.context.inputBufferlnfo.pu32_Nextlnput=pu32_SavedNextlnput; 

} 

return; 

} 

45 

r 

stop execution of this thread until all the other threads have had a chance to run. The return code, 
YIELD_TO_NEXT_THREAD_RETURN„CODE, has a different value than a 
50 SUCCESS_RETURN_CODE, 

This will cause the main cycle function to move on to executing the next thread. 
When the cycle function gets back to executing this thread, execution will proceed starting with the 
instruction following the YIELD OP Instruction. 
65 •/ 

void FUNC PREFIX YieldOp(void) 

{ " ( 

p.c.s32_ProcesslnstructionReturnCode=:YIELD_TO_NEXT_THREAD_RETURN_CODE; 
return; 

60 } 
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End ops are used to end subroutines and disable threads. 

Note that after the last running thread ends, then the story playback will automatically end. 
5 V 

void FUNC_PREFIXEndOp(void) 

. { 

RETURN_ADDRESS„STACK_ELEMENT_TYPE rase; 
SU32 U32J; 

0 if (p.c.contextu32_SubroutineNestingLevel) 
{ 

p.c.context.u32_SubroutineNestingLevel~; 
Pop((PSU8)&rase, size of (rase)); 
p.c.context.inputBufferInfo=rase.inputBufferlnfo; 
^5 p.c.context.pu32_Parameters=rase.pu32__Parameters; 
p.c.context.pFiIelnfo=rase.pInputFileInfo; 
for 

(u32J=0;u32 i<rase.u32 NumberOfElementsOnStackToPopUponReturn;u32J++) 

{ " 
!0 Pop(NULL,0); 

} 

} 

else 

{ f Thread Ended its own Execution */ 
!5 p.c.context.u32_State=SUSPENDED_CONTEXT_STATE; 

p.c.s32„ProcesslnstructionReturnCode=YIELD_TO_NEXT_THREAD_RETURN_CODE; 
} 

return; 

JO } 



END OF APPENDIX I 
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